Updated ceph packages fix security vulnerability

Updated ceph packages fix a security issue allowing an attacker to make Ceph accept any certificate...

EUVD-2022-26875

Malicious code in bioql PyPI...

PT-2025-30101

Name of the Vulnerable Software and Affected Versions wolfSSL affected versions not specified Description A certificate verification error occurs in wolfSSL when built with the WOLFSSL SYS CA CERTS and WOLFSSL APPLE NATIVE CERT VALIDATION options. This results in the wolfSSL client failing to...

SUSE CVE-2012-6093

The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect error when certificate validation fai...

AZL-6440 CVE-2020-13645 affecting package glib-networking for versions less than 2.59.1-8

In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavior, to fail the certificate...

OpenJDK: incorrect enforcement of certificate path restrictions (Security, 8179998)

It was discovered that the Security component of OpenJDK could fail to properly enforce restrictions defined for processing of X.509 certificate chains. A remote attacker could possibly use this flaw to make Java accept certificate using one of the disabled algorithms...

SUSE-SU-2017:0348-1 Security update for gnutls

This update for gnutls fixes the following security issues: - GnuTLS could have crashed when processing maliciously crafted OpenPGP certificates GNUTLS-SA-2017-2, bsc1018832, CVE-2017-5335, CVE-2017-5337, CVE-2017-5336 - GnuTLS could have falsely accepted certificates when using OCSP...

CVE-2016-5672

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which makes it easier for...

Design/Logic Flaw

Apple Safari before 4.0 does not properly check for revoked Extended Validation EV certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate...

CVE-2006-4567

Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self-signed certificates for the auto-update mechanism, which might allow remote user-assisted attackers to use DNS spoofing to trick users into visiting a malicious site and accepting a malicious...

[OpenCA Advisory] Vulnerability in signature verification

OpenCA Security Advisory 16 January 2004 Vulnerability in signature validation ===================================== A flaw in OpenCA before version 0.9.1.7 could cause OpenCA to accept a signature from a certificate if the certificate's chain is trusted by the chain directory of OpenCA. This mea...

CVE-2003-0960

OpenCA before 0.9.1.4 does not use the correct certificate in a chain to check the serial, which could cause OpenCA to accept revoked or expired certificates...