51 matches found
SUSE-SU-2019:0482-2 Security update for python
This update for python fixes the following issues: Security issues fixed: - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191. - CVE-2018-14647: Fixed a denial-of-service vulnerability in Expat bsc1109847. Non-security issue fixed: - Fixed a bug wher...
OPENSUSE-SU-2019:0184-1 Security update for python
This update for python fixes the following issues: Security issue fixed: - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191 This update was imported from the SUSE:SLE-15:Update update project...
openSUSE: Security Advisory for python (openSUSE-SU-2019:0292-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : python (openSUSE-2019-292)
This update for python fixes the following issues : Security issues fixed : - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191. - CVE-2018-14647: Fixed a denial-of-service vulnerability in Expat bsc1109847. Non-security issue fixed : - Fixed a bug...
SUSE SLED12 / SLES12 Security Update : python (SUSE-SU-2019:0482-1)
This update for python fixes the following issues : Security issues fixed : CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191. CVE-2018-14647: Fixed a denial-of-service vulnerability in Expat bsc1109847. Non-security issue fixed: Fixed a bug where...
openSUSE: Security Advisory for python (openSUSE-SU-2019:0184-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : python (openSUSE-2019-184)
This update for python fixes the following issues : Security issue fixed : - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191 This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. T...
Security update for python (moderate)
openSUSE Security Update: Security update for python Announcement ID: openSUSE-SU-2019:0184-1 Rating: moderate References: 1122191 Cross-References: CVE-2019-5010 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for python fix...
Security update for python3 (important)
openSUSE Security Update: Security update for python3 Announcement ID: openSUSE-SU-2019:0155-1 Rating: important References: 1120644 1122191 Cross-References: CVE-2018-20406 CVE-2019-5010 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description:...
SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2019:0271-1)
This update for python fixes the following issues : Security issue fixed : CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...
SUSE-SU-2019:0271-1 Security update for python
This update for python fixes the following issues: Security issue fixed: - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191...
SUSE-SU-2019:0243-1 Security update for python3
This update for python3 fixes the following issues: Security issue fixed: - CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser bsc1122191 - CVE-2018-20406: Fixed a integer overflow via a large LONGBINPUT bsc1120644...
UBUNTU-CVE-2019-5010
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted...
PT-2019-2581 · Python +6 · Python +6
Name of the Vulnerable Software and Affected Versions: Python versions 2.7.11 through 3.6.6 Description: The issue is related to a denial-of-service vulnerability in the X509 certificate parser. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of...
UBUNTU-CVE-2015-5327
Out-of-bounds memory read in the x509decodetime function in x509certparser.c in Linux kernels 4.3-rc1 and after...
BSA-2017-348
Security Advisory ID : BSA-2017-348 Component : StrongSwan Revision : 2.0: Interim A denial-of-service vulnerability in the x509 plugin was discovered instrongSwan. All versions are affected. Incorrect Handling of CHOICE types in ASN.1 parser and x509 plugin ASN.1 CHOICE types are not correctly...
MySQL 5.7.x < 5.7.16 Multiple Vulnerabilities (October 2016 CPU) (SWEET32)
The version of MySQL running on the remote host is 5.7.x prior to 5.7.16. It is, therefore, affected by multiple vulnerabilities : - Multiple integer overflow conditions exist in s3srvr.c, sslsess.c, and t1lib.c due to improper use of pointer arithmetic for heap-buffer boundary checks. An...
OpenSSL 1.0.2 < 1.0.2i Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 1.0.2i. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2i advisory. - Multiple memory leaks in t1lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to...
ALPINE-CVE-2016-6306
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service out-of-bounds read via crafted certificate operations, related to s3clnt.c and s3srvr.c...
DEBIAN-CVE-2016-6306
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service out-of-bounds read via crafted certificate operations, related to s3clnt.c and s3srvr.c...