Google Project Zero Prize Pays $200,000 for Critical Vulnerability Chains

Apple isn’t the only one offering up a $200,000 reward for severe vulnerabilities on mobile devices. Google followed suit yesterday with the announcement of the Project Zero Prize, and like the Apple Security Bounty, the top payout is $200,000. Announced by Google’s Project Zero research team, th...

The vulnerability of the WebSphere Application Server software allows a malicious attacker to compromise the accessibility of protected information.

The vulnerability in IBM GSKit for IBM Security Directory Server ISDS and Tivoli Directory Server TDS allows malicious actors to cause service failures—such as premature termination of applications or system hangs—by using improperly constructed X.509 certificate chains...

OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products (cisco-sa-20150710-openssl)

On July 9, 2015, the OpenSSL Project released a security advisory detailing a vulnerability affecting applications that verify certificates, including SSL/Transport Layer Security TLS/Datagram Transport Layer Security DTLS clients and SSL/TLS/DTLS servers using client authentication. Multiple Cis...

USN-2913-3 openssl update

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the OpenSSL package to properly handle the removal. Original advisory details: The ca-certificates package contained outdated CA certificates. This update...

USN-2913-2 glib-networking update

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the glib-networking package to properly handle the removal. Original advisory details: The ca-certificates package contained outdated CA certificates. Thi...

USN-2913-4 gnutls26 update

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the GnuTLS package to properly handle the removal. Original advisory details: The ca-certificates package contained outdated CA certificates. This update...

USN-2913-4: GnuTLS update

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the GnuTLS package to properly handle the removal. Original advisory details: The ca-certificates package contained outdated CA certificates. This update...

OpenSSL - Alternative Chains Certificate Forgery

OpenSSL - Alternative Chains Certificate Forgery !/usr/bin/env ruby encoding: ASCII-8BIT By Ramon de C Valle. This work is dedicated to the public domain. require 'openssl' require 'optparse' require 'socket' Version = 0, 0, 1 Release = nil class String def hexdumpstream=$stdout 0.stepbytesize - ...

GLSA-201507-15 : OpenSSL: Alternate chains certificate forgery

The remote host is affected by the vulnerability described in GLSA-201507-15 OpenSSL: Alternate chains certificate forgery During certificate verification, OpenSSL attempts to find an alternative certificate chain if the first attempt to build such a chain fails. Impact : A remote attacker could...

Possible Breach Results in Shutdown of Many Retail Photo Services

A potential data breach at a third-party provider has resulted in the shut down of retail photo-printing services at a number of chains, including CVS, Costco, Rite Aid, and several others. The breach reportedly hit PNI Digital Media, a Canadian company that provides the online photo platform for...

OpenSSL 1.0.2c Alternative chains certificate forgery Vulnerability

Exploit for multiple platform in category remote exploits The function X509verifycert checks the value of |ctx-chain| at the beginning, and if it is NULL then it initialises it, along with the value of ctx-untrusted. The normal way to use X509verifycert is to first call X509STORECTXinit; then set...

Pivotx Arbitrary Code Execution Vulnerability

Pivotx is an open source blog content management system Blog CMS. The system supports built-in comment review, spam protection and template replacement. A security vulnerability exists in Pivotx versions prior to 2.3.11, which stems from the program failing to validate a new file extension when...

Vulnerability in OpenSSL - Alternative chains certificate forgery

An error in the implementation of the alternative certificate chain logic could allow an attacker to cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them to use a valid leaf certificate to act as a CA and “issue” an invalid certificate. Found by Adam...

CVE-2015-1793

The X509verifycert function in crypto/x509/x509vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b, and 1.0.2c does not properly process X.509 Basic Constraints cA values during identification of alternative certificate chains, which allows remote attackers to spoof a Certification Authority role and trigger...

openssl -- alternate chains certificate forgery vulnerability

OpenSSL reports: During certificate verification, OpenSSL starting from version 1.0.1n and 1.0.2b will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain chec...

kernel: panic while flushing nftables rules that reference deleted chains.

A flaw was found in the way the nftflushtable function of the Linux kernel's netfilter tables implementation flushed rules that were referencing deleted chains. A local user who has the CAPNETADMIN capability could use this flaw to crash the system...

kernel: panic while flushing nftables rules that reference deleted chains.

A flaw was found in the way the nftflushtable function of the Linux kernel's netfilter tables implementation flushed rules that were referencing deleted chains. A local user who has the CAPNETADMIN capability could use this flaw to crash the system...

kernel: panic while flushing nftables rules that reference deleted chains.

A flaw was found in the way the nftflushtable function of the Linux kernel's netfilter tables implementation flushed rules that were referencing deleted chains. A local user who has the CAPNETADMIN capability could use this flaw to crash the system...

CUPS 2.0.3 - Multiple Vulnerabilities

CUPS 2.0.3 - Multiple Vulnerabilities Source: http://googleprojectzero.blogspot.se/2015/06/owning-internet-printing-case-study-in.html Abstract Modern exploit mitigations draw attackers into a game of diminishing marginal returns. With each additional mitigation added, a subset of software bugs...

CVE-2015-2233

Lenovo System Update formerly ThinkVantage System Update before 5.06.0034 does not properly validate CA chains during signature validation, which allows man-in-the-middle attackers to upload and execute arbitrary files via a crafted certificate...