Lucene search
K

128 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-13758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form...

3.7CVSS6AI score0.00295EPSS
Exploits0References3
OSV
OSV
added 2026/06/29 9:16 p.m.3 views

DEBIAN-CVE-2026-13758

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

3.7CVSS5.8AI score0.00295EPSS
Exploits0References1
NVD
NVD
added 2026/06/29 9:16 p.m.12 views

CVE-2026-13758

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

3.7CVSS0.00295EPSS
Exploits0References3
OSV
OSV
added 2026/06/29 9:16 p.m.5 views

UBUNTU-CVE-2026-13758

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

3.7CVSS5.8AI score0.00295EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 8:42 p.m.26 views

CVE-2026-13758 CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

0.00295EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/29 8:42 p.m.5 views

CVE-2026-13758

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

3.7CVSS5.8AI score0.00295EPSS
Exploits0
CVE
CVE
added 2026/06/29 8:42 p.m.14 views

CVE-2026-13758

CVE-2026-13758 affects CryptX for Perl versions before 0.088_001. The vulnerability stems from a non-constant-time comparison of AEAD authentication tags in the streaming decrypt_done path, using memNE (memcmp() != 0). The run time varies with the number of matching leading bytes across all five ...

3.7CVSS5.8AI score0.00295EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/29 8:42 p.m.5 views

CVE-2026-13758

CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form compares it against the computed tag with memNE memcmp != 0, which short-circuits on the first differing byte, so its run time depends on the...

5.8AI score0.00295EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.7 views

openSUSE 16 Security Update : perl-CryptX (openSUSE-SU-2026:20936-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20936-1 advisory. Changes in perl-CryptX: - updated to 0.89.0 0.089 see /usr/share/doc/packages/perl-CryptX/Changes 0.089 2026-05-10 - new: Crypt::ASN1 - new:...

7.5CVSS5.5AI score0.00469EPSS
Exploits0References7
OSV
OSV
added 2026/06/10 11:48 a.m.4 views

OPENSUSE-SU-2026:20936-1 Security update for perl-CryptX

This update for perl-CryptX fixes the following issues: Changes in perl-CryptX: - updated to 0.89.0 0.089 see /usr/share/doc/packages/perl-CryptX/Changes 0.089 2026-05-10 - new: Crypt::ASN1 - new: Crypt::AuthEnc::SIV - new: Crypt::AuthEnc::XChaCha20Poly1305 - new: Crypt::Cipher::SM4 - new:...

7.5CVSS5.4AI score0.00469EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/09 12:0 a.m.7 views

perl-CryptX-0.89.0-2.1 on GA media (moderate)

perl-CryptX-0.89.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10968-1 Rating: moderate Cross-References: CVE-2026-41565 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

7.5CVSS5.4AI score0.00469EPSS
Exploits0
OSV
OSV
added 2026/06/08 12:0 a.m.6 views

OPENSUSE-SU-2026:10968-1 perl-CryptX-0.89.0-2.1 on GA media

These are all security issues fixed in the perl-CryptX-0.89.0-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.5AI score0.00469EPSS
Exploits0References1
Fedora
Fedora
added 2026/06/07 1:7 a.m.13 views

[SECURITY] Fedora 43 Update: perl-CryptX-0.089-1.fc43

This Perl library provides a cryptography based on LibTomCrypt library...

7.5CVSS5.4AI score0.00469EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/07 12:0 a.m.9 views

Fedora 44 : perl-CryptX (2026-2158c96917)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2158c96917 advisory. Fixes CVE-2026-41565 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for th...

7.5CVSS5.5AI score0.00469EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/07 12:0 a.m.12 views

Fedora 43 : perl-CryptX (2026-2ef4c0c642)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2ef4c0c642 advisory. Fixes CVE-2026-41565 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for th...

7.5CVSS5.5AI score0.00469EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/30 2:7 a.m.14 views

SUSE CVE-2026-41565

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

7.5CVSS6.1AI score0.00469EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/29 12:0 a.m.12 views

CVE-2026-41565

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

7.5CVSS6.1AI score0.00469EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-41565

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify,...

7.5CVSS6.1AI score0.00469EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/28 5:20 p.m.14 views

CVE-2026-41565

A flaw was found in perl-CryptX. A stack buffer overflow vulnerability exists in the AEAD Authenticated Encryption with Associated Data decryptverify helper routines. An attacker who can control the length of the authentication tag provided to these routines can cause a buffer overflow, potential...

9.8CVSS6.5AI score0.00469EPSS
Exploits0References6
NVD
NVD
added 2026/05/28 4:16 p.m.19 views

CVE-2026-41565

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

7.5CVSS0.00469EPSS
Exploits0References4
Rows per page
Query Builder