226 matches found
AZL-65193 CVE-2025-6395 affecting package gnutls for versions less than 3.8.3-6
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...
AZL-65154 CVE-2025-6395 affecting package gnutls for versions less than 3.7.11-4
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...
DEBIAN-CVE-2025-6395
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...
UBUNTU-CVE-2025-6395
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...
CVE-2025-6395
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the gnutlsfigurecommonciphersuite function. Remediation A fix was pushed into the master branch but not yet published. References - Fix Commit - PoC - Red Hat Bugzilla Bug - Release Notes Credit: Stefan Bühl...
CVE-2022-29242
GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite TLSGOSTR341112256WITHKUZNYECHIKCTROMAC is agreed and the server uses 512 bit GOST secret keys are vulnerable to buffer overflow. GOST engine version 3.0.1...
Linux Distros Unpatched Vulnerability : CVE-2022-29242
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite...
CVE-2024-5814
...
CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
UBUNTU-CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814 Unverifed Ciphersuite used on a client-side TLS1.3 Downgrade
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814 Unverifed Ciphersuite used on a client-side TLS1.3 Downgrade
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814
CVE-2024-5814 is confirmed in the NVD entry and echoed by other connected advisories describing a downgrade flaw where a malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a cipher-suite it did not agree to, due to the client skipping full parsing of the ServerHell...
CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
CVE-2024-5814
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a ciphersuite that it did not agree to and achieve a successful connection. This is because, aside from the extensions, the client was skipping fully parsing the server hello...
GO-2024-2850 NATS server TLS missing ciphersuite settings when CLI flags used in github.com/nats-io/nats-server
NATS server TLS missing ciphersuite settings when CLI flags used in github.com/nats-io/nats-server...
RHEL 3 : openssl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 3 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssl: SGC restart DoS attack CVE-2011-4619 - openssl: CMS and PKCS7 Bleichenbacher attack CVE-2012-088...