1123 matches found
GLSA-200603-14 : Heimdal: rshd privilege escalation
The remote host is affected by the vulnerability described in GLSA-200603-14 Heimdal: rshd privilege escalation An unspecified privilege escalation vulnerability in the rshd server of Heimdal has been reported. Impact : Authenticated users could exploit the vulnerability to escalate privileges or...
GLSA-200603-15 : Crypt::CBC: Insecure initialization vector
The remote host is affected by the vulnerability described in GLSA-200603-15 Crypt::CBC: Insecure initialization vector Lincoln Stein discovered that Crypt::CBC fails to handle 16 bytes long initializiation vectors correctly when running in the RandomIV mode, resulting in a weaker encryption...
[SECURITY] [DSA 996-1] New Crypt::CBC packages fix cryptographic weakness
-------------------------------------------------------------------------- Debian Security Advisory DSA 996-1 [email protected] http://www.debian.org/security/ Martin Schulze March 13th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 996-1] New Crypt::CBC packages fix cryptographic weakness
-------------------------------------------------------------------------- Debian Security Advisory DSA 996-1 [email protected] http://www.debian.org/security/ Martin Schulze March 13th, 2006 http://www.debian.org/security/faq -...
DSA-996-1 libcrypt-cbc-perl - programming error
Bulletin has no description...
kernel security update
CentOS Errata and Security Advisory CESA-2006:0132 Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the third regular update. This update has been rated as having moderate security impact by the Red Hat Security...
RHEL 4 : Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3 (Moderate) (RHSA-2006:0132)
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2006:0132 advisory. The Linux kernel handles the basic functions of the operating system. This is the third regular kernel update to Red Hat Enterprise Linux 4. New...
Moderate: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3
Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the third regular update. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Linux kernel handles the basic...
CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
Code injection
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
DEBIAN-CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
CVE-2006-0898
CVE-2006-0898 affects the Perl module Crypt::CBC (versions up to 2.16) when running in RandomIV mode, where an 8-byte IV is used. This leads to weaker encryption for ciphers with block sizes larger than 8 bytes (e.g., Rijndael). Multiple connected advisories note a fixed/enhancement path via upda...
CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...
Perl Crypt::CBC module weak cryptography
Invalid Initialization vector generation algorithm for block cyphers with blocks different from 8 bytes Rijndael...
Vulnerability in Crypt::CBC Perl module, versions <= 2.16
Perl Module Security Advisory ------------------------------------------------------------------------------- Title: Crypt::CBC ciphertext weakness when using certain block algorithms Severity: High Versions: All versions = 2.16. Date: 23 February 2006...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:040)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The udpv6getport function in udp.c, when running IPv6, allows local users to cause a Denial of Service infinite loop and crash CVE-2005-2973. The mqopen system call in certain situations can decrement a counter...
Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-244-1)
Doug Chapman discovered a flaw in the reference counting in the sysmqopen function. By calling this function in a special way, a local attacker could exploit this to cause a kernel crash. CVE-2005-3356 Karl Janmar discovered that the /proc file system module used signed data types in a wrong way....
Linux kernel multiple vulnerabilities
TwinHan DST Frontend/Card DVB driver buffer overflow, dm-crypt module doesn't clear memory...