273 matches found
USN-3850-2: NSS vulnerabilities
USN-3850-1 fixed several vulnerabilities in NSS. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Keegan Ryan discovered that NSS incorrectly handled ECDSA key generation. A local attacker could possibly use this issue to perform a cache-timing attack...
Ubuntu: Security Advisory (USN-3850-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3850-1: NSS vulnerabilities
Keegan Ryan discovered that NSS incorrectly handled ECDSA key generation. A local attacker could possibly use this issue to perform a cache-timing attack and recover private ECDSA keys. CVE-2018-0495 It was discovered that NSS incorrectly handled certain v2-compatible ClientHello messages. A remo...
nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello
A flaw was found in the way NSS responded to an SSLv2-compatible ClientHello with a ServerHello that had an all-zero random. A man-in-the-middle attacker could use this flaw in a passive replay attack...
UBUNTU-CVE-2018-12384
When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. This results in full malleability of the ClientHello for SSLv2 used for TLS 1.2 in all versions prior to NSS 3.39. This does not impact TLS 1.3...
Transparent Man-in-the-Middle TLS Proxy: ratched
ratched is a Man-in-the-Middle MitM proxy that specifically intercepts TLS connections. It is intended to be used in conjunction with the Linux iptables REDIRECT target; all connections that should be intercepted can be redirected to the local ratched port. Through the SOORIGINALDST sockopt,...
EulerOS 2.0 SP1 : gnutls (EulerOS-SA-2017-1203)
According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A double-free flaw was found in the way GnuTLS parsed certain X.509 certificates with Proxy Certificate Information extension. An attacker could...
The vulnerability of the Android CAF-release operating system, caused by the operation going beyond buffer boundaries in memory, allows a hacker to trigger a memory leak.
The vulnerability of the Android CAF-release operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to trigger a memory leak when a connection is denied for the clientHello message, which is a cryptographi...
Scientific Linux Security Update : gnutls on SL7.x x86_64 (20170801)
The following packages have been upgraded to a later upstream version: gnutls 3.3.26. Security Fixes : - A double-free flaw was found in the way GnuTLS parsed certain X.509 certificates with Proxy Certificate Information extension. An attacker could create a specially crafted certificate which,...
CVE-2017-7507
A null pointer dereference flaw was found in the way GnuTLS processed ClientHello messages with statusrequest extension. A remote attacker could use this flaw to cause an application compiled with GnuTLS to crash...
OpenSSL handshake renegotiation process in the presence of the vulnerability can lead to denial of service-vulnerability warning-the black bar safety net
One, Foreword OpenSSL is a very popular General-purpose encryption library, available as a Web authentication service to provide SSL/TLS Protocol Implementation. Recently, there has been found in OpenSSL in the presence of several vulnerabilities. We've written several articles on the analysis of...
Denial Of Service (DoS) Through Null Pointer Dereference
OpenSSL is vulnerable to denial of service DoS attacks. These attacks can be triggered by using an invalid signaturealgorithms extension in the the ClientHello message during renegotiation...
The vulnerability of Cisco ASA software allows a malicious individual to execute arbitrary code.
The vulnerability exists in the function dtls1reassemblefragment in d1both.c in OpenSSL, due to incorrect checking of the length of fragments in DTLS ClientHello messages. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure buffer overflow and...
Vulnerability of the OpenSSL software, which allows a malicious attacker to compromise protected information
The vulnerability in the ssl23getclienthello function of s23srvr.c for OpenSSL allows a malicious actor to downgrade the TLS protocol version by fragmenting the ClientHello message during data exchange between the client and servers that support newer versions of the protocol...
The vulnerability of the OpenSSL software allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability exists in the function dtls1reassemblefragment in d1both.c in OpenSSL, due to an improper check of the length of fragments in DTLS ClientHello messages. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure buffer overflow an...
CVE-2015-6925
wolfSSL formerly CyaSSL before 3.6.8 allows remote attackers to cause a denial of service resource consumption or traffic amplification via a crafted DTLS cookie in a ClientHello message...
DEBIAN-CVE-2015-6925
wolfSSL formerly CyaSSL before 3.6.8 allows remote attackers to cause a denial of service resource consumption or traffic amplification via a crafted DTLS cookie in a ClientHello message...
Code injection
wolfSSL formerly CyaSSL before 3.6.8 allows remote attackers to cause a denial of service resource consumption or traffic amplification via a crafted DTLS cookie in a ClientHello message...
CVE-2015-6925
wolfSSL formerly CyaSSL before 3.6.8 allows remote attackers to cause a denial of service resource consumption or traffic amplification via a crafted DTLS cookie in a ClientHello message...
UBUNTU-CVE-2015-6925
wolfSSL formerly CyaSSL before 3.6.8 allows remote attackers to cause a denial of service resource consumption or traffic amplification via a crafted DTLS cookie in a ClientHello message...