46 matches found
Security Bulletin: This Power System update is being released to address multiple CVEs for vTPM1.2
Summary This update addresses multiple CVEs that impacts any VM configured with a virtual trusted platform module vTPM version 1.2 Vulnerability Details CVEID:CVE-2018-5407 DESCRIPTION: Multiple SMT/Hyper-Threading architectures and processors could allow a local attacker to obtain sensitive...
Oracle Linux 3 / 4 : openssl096b (ELSA-2010-0173)
From Red Hat Security Advisory 2010:0173 : Updated openssl096b packages that fix one security issue are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...
Oracle Linux 5 : openssl (ELSA-2010-0162)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0162 advisory. - fix CVE-2009-3245 - add missing bnwexpand return checks 570924 - fix CVE-2010-0433 - do not pass NULL princ to krb5ktgetentry which in the RHEL-5 and...
Scientific Linux Security Update : openssl096b on SL3.x, SL4.x i386/x86_64
CVE-2009-3245 openssl: missing bnwexpand return value checks It was discovered that OpenSSL did not always check the return value of the bnwexpand function. An attacker able to trigger a memory allocation failure in that function could cause an application using the OpenSSL library to crash or,...
Scientific Linux Security Update : openssl on SL4.x, SL5.x i386/x86_64
A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSLOPNETSCAPEREUSECIPHERCHANGEBUG option, possibly forcing the clien...
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-004)
This host is missing an important security update according to Mac OS X 10.5.8 Update/Mac OS X Security Update 2011-004. OpenVAS Vulnerability Test $Id: secpodmacosxsu11-004.nasl 7015 2017-08-28 11:51:24Z teissa $ Mac OS X v10.6.8 Multiple Vulnerabilities 2011-004 Authors: Antu Sanadi Copyright:...
CentOS Update for openssl CESA-2010:0162 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for openssl CESA-2010:0162 centos5 i386
Check for the Version of openssl OpenVAS Vulnerability Test CentOS Update for openssl CESA-2010:0162 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CentOS Update for openssl CESA-2010:0977 centos4 i386
Check for the Version of openssl OpenVAS Vulnerability Test CentOS Update for openssl CESA-2010:0977 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
RHEL 4 : openssl (RHSA-2010:0977)
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0977 advisory. - openssl: NETSCAPEREUSECIPHERCHANGEBUG downgrade-to-disabled ciphersuite attack CVE-2008-7270 - openssl: missing bnwexpand return value...
openssl security update
0.9.7a-43.17.6 - CVE-2010-4180 - disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462 - CVE-2009-3245 - fix missing checks on allocation failure in bnwexpand 570924...
SuSE 11 Security Update : OpenSSL (SAT Patch Number 2214)
This update adds support for RFC5746 TLS renegotiations to address vulnerabilities tracked as CVE-2009-3555. It also fixes a mishandling of OOM conditions in bnwexpand. CVE-2009-3245 Installation notes This update is provided as RPM packages that can easily be installed onto a running system by...
Ubuntu: Security Advisory (USN-1003-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS / 10.10 : openssl vulnerabilities (USN-1003-1)
It was discovered that OpenSSL incorrectly handled return codes from the bnwexpand function calls. A remote attacker could trigger this flaw in services that used SSL to cause a denial of service or possibly execute arbitrary code with application privileges. This issue only affected Ubuntu 6.06...
VMSA-2010-0015 : VMware ESX third-party updates for Service Console
a. Service Console update for NSSdb The service console package NSSdb is updated to version nssdb-2.2-35.4.el55. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2010-0826 to this issue. b. Service Console update for OpenLDAP The service console package...
Fedora 13 : openssl-1.0.0-1.fc13 (2010-5744)
Update to final release of upstream version 1.0.0. The update fixes important security vulnerabilities: CVE-2009-3245, CVE-2009-4355, CVE-2010-0433, and CVE-2010-0740. Refer to upstream CHANGES file for the detailed list of changes. Note that Tenable Network Security has extracted the preceding...
Fedora 12 : openssl-1.0.0-4.fc12 (2010-8742)
This update fixes multiple bugs and security issues. It especially adds support for RFC5746. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 11 : openssl-0.9.8n-1.fc11 (2010-5357)
Update to upstream version 0.9.8n fixing multiple security issues: CVE-2009-3555, CVE-2009-3245, CVE-2009-4355, and CVE-2010-0433. Refer to upstream CHANGES file for the detailed list of changes since version 0.9.8k : - http://cvs.openssl.org/fileview?f=openssl/CHANGES&v=1.12 38.2.193 Note that...
Fedora Update for openssl FEDORA-2010-9421
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for openssl FEDORA-2010-8742
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...