Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2014-0481)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.7AI score0.0209EPSS
Exploits0References5
CVE
CVE
added 2015/08/24 3:0 p.m.62 views

CVE-2014-8628

CVE-2014-8628 affects PolarSSL: memory leak in parsing X.509 certificates can be exploited remotely to cause DoS via a large number of crafted certificates. Affected versions are PolarSSL before 1.2.12 and 1.3.x before 1.3.9; CVE-2014-9744 covers a separate ClientHello issue. Remediation is to up...

7.8CVSS6.4AI score0.01718EPSS
Exploits0References4Affected Software1
Mageia
Mageia
added 2015/05/05 1:36 p.m.44 views

Updated polarssl & hiawatha packages fix security vulnerabilities

Updated hiawatha package fixes security vulnerabilities: The hiawatha package included a bundled copy of PolarSSL 1.3.2, which was vulnerable to several security issues that had already been fixed in the system polarssl package. These issues were CVE-2014-4911, CVE-2014-8627, CVE-2014-8628, and...

6AI score
Exploits0References4
OSV
OSV
added 2015/05/05 1:36 p.m.7 views

MGASA-2015-0185 Updated polarssl & hiawatha packages fix security vulnerabilities

Updated hiawatha package fixes security vulnerabilities: The hiawatha package included a bundled copy of PolarSSL 1.3.2, which was vulnerable to several security issues that had already been fixed in the system polarssl package. These issues were CVE-2014-4911, CVE-2014-8627, CVE-2014-8628, and...

6.3AI score
Exploits0References5
OpenVAS
OpenVAS
added 2015/01/31 12:0 a.m.57 views

Fedora Update for polarssl FEDORA-2015-0991

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.03246EPSS
Exploits0References2
Debian
Debian
added 2015/01/03 9:32 p.m.33 views

[SECURITY] [DLA 129-1] polarssl security update

Package : polarssl Version : 1.2.9-1deb6u3 CVE ID : CVE-2014-8628 It was discovered that a memory leak in parsing X.509 certificates may result in denial of service...

7.8CVSS6.2AI score0.01718EPSS
Exploits0
Debian
Debian
added 2014/12/30 1:19 a.m.35 views

[SECURITY] [DSA 3116-1] polarssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3116-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 30, 2014 http://www.debian.org/security/faq -...

7.8CVSS5.7AI score0.01718EPSS
Exploits0
securityvulns
securityvulns
added 2014/12/30 12:0 a.m.100 views

[SECURITY] [DSA 3116-1] polarssl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3116-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 30, 2014 http://www.debian.org/security/faq -...

7.8CVSS1.6AI score0.01718EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/11/24 12:0 a.m.36 views

Fedora 20 : polarssl-1.2.12-1.fc20 (2014-14898)

Update to 1.2.12 - CVE-2014-8628 1159845 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

7.8CVSS6.5AI score0.0209EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/11/24 12:0 a.m.30 views

Fedora 19 : polarssl-1.2.12-1.fc19 (2014-14912)

Update to 1.2.12 - CVE-2014-8628 1159845 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

7.8CVSS6.5AI score0.0209EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/11/23 12:0 a.m.31 views

Fedora Update for polarssl FEDORA-2014-14912

Check the version of polarssl SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868511";...

7.8CVSS7.5AI score0.02427EPSS
Exploits0References2
Mageia
Mageia
added 2014/11/22 10:54 a.m.42 views

Updated polarssl package fix security vulnerabilities

A regression in PolarSSL 1.3.8 resulted in servers negotiating a weaker signature algorithm than available. This has been fixed in PolarSSL 1.3.9 CVE-2014-8627. Two remotely-triggerable memory leaks were found by the Codenomicon Defensics tool and fixed in PolarSSL 1.3.9 CVE-2014-8628...

7.8CVSS6.4AI score0.0209EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/20 12:0 a.m.26 views

openSUSE Security Update : polarssl (openSUSE-SU-2014:1457-1)

polarssl was updated to version 1.3.9 to fix two security issues. These security issues were fixed : - Lowest common hash was selected from signaturealgorithms extension in TLS 1.2 CVE-2014-8627. - Remotely-triggerable memory leak when parsing some X.509 certificates CVE-2014-8628. %NASLMINLEVEL...

7.8CVSS6.5AI score0.0209EPSS
Exploits0References5
Rows per page
Query Builder