4 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992987)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992987 advisory. In the Linux kernel, the following vulnerability has been resolved: kcm: fix strpinit order and cleanup strpinit is called just a few lines above this csk-skuserdata...
PT-2022-36386 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.225 Description: The issue concerns a potential race in kcm tx work. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.4.225, update ...
JSS: OCSP policy "Leaf and Chain" implicitly trusts the root certificate
A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager, where it implicitly trusted the root certificate of a certificate chain. Applications using this policy may not properly verify the chain and could be vulnerable to attacks such as Man in the Middle...
JSS CryptoManager Trust Management Issues Vulnerability
JSS CryptoManager is a JSS Java Network Security Service cryptographic management package. A trust management issue vulnerability exists in the implementation of the 'Leaf and Chain' OCSP protocol in JSS CryptoManager versions 4.4.6 onwards, 4.5.3 onwards, and 4.6.0 onwards, which can be exploite...