Lucene search
K

26 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/15 3:44 p.m.21 views

Security Bulletin: Vulnerabilities exists in IBM Netezza Analytics - NPS Product

Summary Vulnerabilities exist in IBM Netezza Analytics - NPS product are addressed in version 11.2.29 Vulnerability Details CVEID:CVE-2024-6345 DESCRIPTION: pypa/setuptools could allow a remote attacker to execute arbitrary code on the system, caused by an error in the packageindex module. By...

9.8CVSS10AI score0.9378EPSS
Exploits19Affected Software1
Amazon
Amazon
added 2024/06/24 12:0 a.m.10 views

Important: python-crypto

Issue Overview: Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py. CVE-2013-7459 Affected Packages: python-crypto Note: This...

9.8CVSS8.3AI score0.09501EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.28 views

Amazon Linux 2 : python-crypto (ALASANSIBLE2-2024-011)

It is, therefore, affected by a vulnerability as referenced in the ALAS2ANSIBLE2-2024-011 advisory. Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto allows remote attackers to execute arbitrary code as demonstrated by a crafted iv...

9.8CVSS9.1AI score0.09501EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/17 11:23 a.m.44 views

Security Bulletin: Vulnerability in pycrypto-2.6.1.tar.gz affects IBM Integrated Analytics System [CVE-2013-7459, CVE-2018-6594]

Summary The pycrypto-2.6.1.tar.gz package is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable vulnerability CVE-2013-7459, CVE-2018-6594. Vulnerability Details CVEID:CVE-2013-7459 DESCRIPTION: PyCrypto is vulnerable to a heap-based buffer...

9.8CVSS9.6AI score0.09501EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2017:1744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.09501EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.47 views

EulerOS Virtualization for ARM 64 3.0.6.0 : python-crypto (EulerOS-SA-2020-1996)

According to the versions of the python-crypto package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto...

9.8CVSS8.5AI score0.09501EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for python-crypto (EulerOS-SA-2018-1168)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.09501EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.27 views

Photon OS 1.0: Pycrypto PHSA-2017-0026

An update of the pycrypto package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0026. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121720;...

9.8CVSS9.5AI score0.09501EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.43 views

Photon OS 1.0: Openjre PHSA-2017-0026

An update of the openjre package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0026. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121719;...

9.8CVSS7.8AI score0.09501EPSS
Exploits1References30
vulnersOsv
vulnersOsv
added 2018/12/14 6:51 p.m.3 views

aacrgenie (>=9.0.0 <=12.5.0), aalam-common (=0.1.78) +549 more potentially affected by CVE-2013-7459 via pycrypto (>=2.4.1 <=2.6.1)

pycrypto PYPI version =2.4.1, =9.0.0, =0.0.8, =1.1.3, =1.0.1, =3.4.0, =0.4.0b0, =3.0.0b1, =0.0.2, =0.0.1, =1.0.0, =0.0.4, =0.3.1 and more Source cves: CVE-2013-7459 Source advisory: OSV:GHSA-CQ27-V7XP-C356...

9.8CVSS7.2AI score0.09501EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/06/28 12:0 a.m.32 views

EulerOS 2.0 SP3 : python-crypto (EulerOS-SA-2018-1168)

According to the version of the python-crypto package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto allows remote attackers to...

9.8CVSS8.7AI score0.09501EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:35 a.m.27 views

Security Bulletin: A vulnerability in PyCrypto affects PowerKVM

Summary PowerKVM is affected by a vulnerability in python-crypto PyCrypto. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2013-7459 DESCRIPTION: PyCrypto is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the ALGnew function in...

9.8CVSS0.8AI score0.09501EPSS
Exploits1Affected Software1
OSV
OSV
added 2017/09/05 12:41 p.m.5 views

SUSE-SU-2017:2350-1 Security update for python-pycrypto

This update for python-pycrypto fixes the following issues: - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew bsc1017420. python-paramiko was adjusted to work together with this python-pycrypto change. bsc1047666...

9.8CVSS9.7AI score0.09501EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.324 views

SUSE SLES11 Security Update : python-pycrypto (SUSE-SU-2017:1744-1)

This update for python-pycrypto fixes the following issues : - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew bsc1017420. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

9.8CVSS8.4AI score0.09501EPSS
Exploits1References4
OSV
OSV
added 2017/06/30 3:26 p.m.10 views

SUSE-SU-2017:1744-1 Security update for python-pycrypto

This update for python-pycrypto fixes the following issues: - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew bsc1017420...

9.8CVSS9.8AI score0.09501EPSS
Exploits1References3
Amazon
Amazon
added 2017/03/06 12:0 a.m.39 views

Important: python-crypto

Issue Overview: A heap-buffer overflow vulnerability was discovered in cryptopp. This vulnerability can be used to remotely gain access to shell. Affected Packages: python-crypto Issue Correction: Run yum update python-crypto or yum update --advisory ALAS-2017-801 to update your system.Run yum...

9.8CVSS9.8AI score0.09501EPSS
Exploits1
CVE
CVE
added 2017/02/15 3:0 p.m.221 views

CVE-2013-7459

CVE-2013-7459 is a heap-based buffer overflow in the ALGnew function of block_templace.c in Python Cryptography Toolkit (pycrypto). An attacker could trigger arbitrary code execution by supplying a crafted iv to cryptmsg.py. IBM and Amazon Linux advisories corroborate the vulnerability in pycrypt...

9.8CVSS9.7AI score0.09501EPSS
Exploits1References9Affected Software1
Debian CVE
Debian CVE
added 2017/02/15 3:0 p.m.21 views

CVE-2013-7459

Removed by vendor...

9.8CVSS9.4AI score0.09501EPSS
Exploits1
OSV
OSV
added 2017/02/15 12:0 a.m.2 views

UBUNTU-CVE-2013-7459

Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py...

9.8CVSS7.9AI score0.09501EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2017/01/31 12:0 a.m.32 views

Fedora 25 : python-crypto (2017-7c569d396b)

A heap-buffer overflow vulnerability was discovered in pycrypto leading to arbitrary code execution. All users of pycrypto's AES module that allow the mode of operation to be specified by an attacker, check for ECB explicitly and create the objects without specifying an IV are vulnerable to this...

9.8CVSS8.6AI score0.09501EPSS
Exploits1References2
Rows per page
Query Builder