CVE-2026-5295

A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wcPKCS7DecryptOri function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo ORI recipient, the function copies an ASN.1-parsed OID into a fixed 32-byte stack buffer...

minimal_poc

bas...

SUSE-SU-2026:20218-1 Security update for dpdk

This update for dpdk fixes the following issues: Update to version 24.11.4. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface bsc1254161. Other issues fixed...

SUSE-SU-2026:20209-1 Security update for dpdk

This update for dpdk fixes the following issues: Update to version 24.11.4. Security issues fixed: - CVE-2025-23259: issue in the Poll Mode Driver PMD allows an attacker on a VM in the system to leak information and cause a denial of service on the network interface bsc1254161. Other issues fixed...

SUSE CVE-2010-0412

stap-server in SystemTap 1.1 does not properly restrict the value of the -B aka BUILD option, which allows attackers to have an unspecified impact via vectors associated with executing the make program, a different vulnerability than CVE-2009-4273...

SUSE: Security Advisory (SUSE-SU-2014:1386-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2014:1524-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libreoffice security, bug fix, and enhancement update

libcmis 0.5.2-1 - Related: rhbz1796893 update to 0.5.2 liborcus 0.14.1-1 - Related: rhbz1796893 update to 0.14.1 libreoffice 6.3.6.2-3.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure...

SUSE: Security Advisory for OpenSSL (SUSE-SU-2014:1386-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : compat-openssl098 (SUSE-SU-2014:1512-1) (POODLE)

compat-openssl098 was updated to fix three security issues. NOTE: this update alone DOESN'T FIX the POODLE SSL protocol vulnerability. OpenSSL only adds downgrade detection support for client applications. See https://www.suse.com/support/kb/doc.php?id=7015773 for mitigations. These security issu...

SUSE SLES10 Security Update : OpenSSL (SUSE-SU-2014:1387-1) (POODLE)

This OpenSSL update fixes the following issues : - Session Ticket Memory Leak CVE-2014-3567 - Build option no-ssl3 is incomplete CVE-2014-3568 - Add support for TLSFALLBACKSCSV to mitigate CVE-2014-3566 POODLE Note that Tenable Network Security has extracted the preceding description block direct...

SuSE 11.3 Security Update : OpenSSL (SAT Patch Number 9915)

This OpenSSL update fixes the following issues : - Session Ticket Memory Leak. CVE-2014-3567 - Build option no-ssl3 is incomplete. CVE-2014-3568 - Add support for TLSFALLBACKSCSV to mitigate CVE-2014-3566 POODLE %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

SUSE-SU-2015:1182-2 Security update for OpenSSL

This OpenSSL update fixes the following issues: Session Ticket Memory Leak CVE-2014-3567 Build option no-ssl3 is incomplete CVE-2014-3568 Add support for TLSFALLBACKSCSV to mitigate CVE-2014-3566 POODLE Security Issues: CVE-2014-3567 CVE-2014-3566 CVE-2014-3568...

SUSE-SU-2015:1184-1 Security update for OpenSSL

This OpenSSL update fixes the following issues: Session Ticket Memory Leak CVE-2014-3567 Build option no-ssl3 is incomplete CVE-2014-3568 Add support for TLSFALLBACKSCSV to mitigate CVE-2014-3566 POODLE Security Issues: CVE-2014-3567 CVE-2014-3566 CVE-2014-3568...

SUSE-SU-403 Security update for OpenSSL

This OpenSSL update fixes the following issues: Session Ticket Memory Leak CVE-2014-3567 Build option no-ssl3 is incomplete CVE-2014-3568 Add support for TLSFALLBACKSCSV to mitigate CVE-2014-3566 POODLE Security Issues: CVE-2014-3567 CVE-2014-3566 CVE-2014-3568...

Design/Logic Flaw

OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23clnt.c and s23srvr.c...

[slackware-security] openssl (SSA:2014-288-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security openssl SSA:2014-288-01 New openssl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

FreeBSD : OpenSSL -- multiple vulnerabilities (03175e62-5494-11e4-9cc1-bc5ff4fb5e7b) (POODLE)

The OpenSSL Project reports : A flaw in the DTLS SRTP extension parsing code allows an attacker, who sends a carefully crafted handshake message, to cause OpenSSL to fail to free up to 64k of memory causing a memory leak. This could be exploited in a Denial Of Service attack. This issue affects...

DSA-3053-1 openssl - security update

Bulletin has no description...

[slackware-security] openssl

New openssl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/openssl-solibs-1.0.1j-i486-1slack14.1.txz: Upgraded. Security fix...