Lucene search
K

57 matches found

OSV
OSV
added 2017/04/27 4:47 p.m.10 views

USN-3270-1 nss vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update causes NSS to limit use of the same symmetric key...

9.8CVSS7AI score0.95707EPSS
Exploits7References3
Ubuntu
Ubuntu
added 2017/04/27 4:47 p.m.129 views

USN-3270-1: NSS vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update causes NSS to limit use of the same symmetric key...

9.8CVSS7.8AI score0.95707EPSS
Exploits7
OpenVAS
OpenVAS
added 2017/01/05 12:0 a.m.56 views

Ubuntu: Security Advisory (USN-3163-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02452EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2017/01/04 4:32 p.m.73 views

USN-3163-1: NSS vulnerabilities

It was discovered that NSS incorrectly handled certain invalid Diffie-Hellman keys. A remote attacker could possibly use this flaw to cause NSS to crash, resulting in a denial of service. This issue only applied to Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-5285 Hubert Kari...

7.5CVSS7.6AI score0.02452EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/07/12 12:0 a.m.42 views

Ubuntu 14.04 LTS / 16.04 LTS : NSS vulnerability (USN-3029-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3029-1 advisory. Tyson Smith and Jed Davis discovered that NSS incorrectly handled memory. A remote attacker could use this issue to cause NSS to crash, resulting in a...

9.3CVSS8.6AI score0.0338EPSS
Exploits0References2
OSV
OSV
added 2016/07/11 4:36 p.m.5 views

USN-3029-1 nss vulnerability

Tyson Smith and Jed Davis discovered that NSS incorrectly handled memory. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code. This update refreshes the NSS package to version 3.23 which includes the latest CA...

9.3CVSS7.3AI score0.0338EPSS
Exploits0References2
OSV
OSV
added 2016/02/24 5:27 p.m.4 views

USN-2913-3 openssl update

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the OpenSSL package to properly handle the removal. Original advisory details: The ca-certificates package contained outdated CA certificates. This update...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/24 12:0 a.m.40 views

Ubuntu 12.04 LTS : nss regression (USN-2903-2)

USN-2903-1 fixed a vulnerability in NSS. An incorrect package versioning change in Ubuntu 12.04 LTS caused a regression when building software against NSS. This update fixes the problem. We apologize for the inconvenience. Hanno Bock discovered that NSS incorrectly handled certain division...

6.5CVSS7.8AI score0.03121EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2016/02/23 3:47 p.m.63 views

USN-2903-2: NSS regression

USN-2903-1 fixed a vulnerability in NSS. An incorrect package versioning change in Ubuntu 12.04 LTS caused a regression when building software against NSS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Hanno Böck discovered that NSS incorrectly...

7.8AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/02/18 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-2903-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.03121EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/18 12:0 a.m.27 views

Ubuntu 14.04 LTS : NSS vulnerability (USN-2903-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2903-1 advisory. Hanno Bck discovered that NSS incorrectly handled certain division functions, possibly leading to cryptographic weaknesses. CVE-2016-1938 This update also refresh...

6.5CVSS7.9AI score0.03121EPSS
Exploits0References2
OSV
OSV
added 2016/01/13 8:5 p.m.4 views

SUSE-SU-2016:0114-1 Security update for python-requests

The python-requests module has been updated to version 2.8.1, which brings several fixes and enhancements: - Fix handling of cookies on redirect. Previously a cookie without a host value set would use the hostname for the redirected URL exposing requests users to session fixation attacks and...

6.8CVSS6.6AI score0.03408EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/07/13 12:0 a.m.46 views

Ubuntu 14.04 LTS : NSS vulnerabilities (USN-2672-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2672-1 advisory. Karthikeyan Bhargavan discovered that NSS incorrectly handled state transitions for the TLS state machine. If a remote attacker were able to perform a...

4.3CVSS7.5AI score0.03594EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/07/10 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-2672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5AI score0.03594EPSS
Exploits1References2
OSV
OSV
added 2015/02/19 5:48 p.m.2 views

USN-2504-1 nss update

The NSS package contained outdated CA certificates. This update refreshes the NSS package to version 3.17.4 which includes the latest CA certificate bundle...

5.8AI score
Exploits0References2
OSV
OSV
added 2014/09/22 11:42 a.m.4 views

USN-2350-1 nss update

The NSS package contained outdated CA certificates. This update refreshes the NSS package to version 3.17 which includes the latest CA certificate bundle...

5.8AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/01/19 12:0 a.m.9 views

Mandriva Update for kdelibs4 MDVA-2010:024 (kdelibs4)

Check for the Version of kdelibs4 OpenVAS Vulnerability Test Mandriva Update for kdelibs4 MDVA-2010:024 kdelibs4 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

7.1AI score
Exploits0References2
Rows per page
Query Builder