PT-2023-13432 · Isc · Bind 9

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.11.4-S1 through 9.11.37-S1 BIND 9 versions 9.16.8-S1 through 9.16.36-S1 Description: The issue arises when processing repeated responses to the same query, where both responses contain ECS pseudo-options, but the first...

nettle: Out of bounds memory access in signature verification

A flaw was found in Nettle, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve Cryptography point ECC multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an...