Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2015-3407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files. CVE-2015-340...

5CVSS7.3AI score0.02358EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 7 : perl-module-signature (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-Module-Signature: unsigned files interpreted as signed in some circumstances CVE-2015-3406 -...

7.5CVSS8.2AI score0.05658EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.18 views

Debian: Security Advisory (DLA-264-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.05658EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/01/25 12:0 a.m.47 views

openSUSE Security Update : perl-Module-Signature (openSUSE-2016-61)

This update to perl-Module-Signature 0.79 fixes the following security issues : - More protection of @INC from relative paths. CVE-2015-3409 - Fix GPG signature parsing logic. CVE-2015-3406 - MANIFEST.SKIP is no longer consulted unless --skip is given. CVE-2015-3407 - Properly use open modes to...

10CVSS7.2AI score0.05658EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/07/02 12:0 a.m.20 views

Debian DLA-264-1 : libmodule-signature-perl security update

John Lightsey discovered multiple vulnerabilities in Module::Signature, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2015-3406 Module::Signature could parse the unsigned portion of the SIGNATURE file as...

10CVSS7.9AI score0.05658EPSS
Exploits0References6
Debian
Debian
added 2015/07/01 11:46 a.m.24 views

[SECURITY] [DLA 264-1] libmodule-signature-perl security update

Package : libmodule-signature-perl Version : 0.63-1+squeeze2 CVE ID : CVE-2015-3406 CVE-2015-3407 CVE-2015-3408 CVE-2015-3409 Debian Bug : 783451 John Lightsey discovered multiple vulnerabilities in Module::Signature, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities an...

10CVSS7.4AI score0.05658EPSS
Exploits0
OSV
OSV
added 2015/07/01 12:0 a.m.24 views

DLA-264-1 libmodule-signature-perl - security update

Bulletin has no description...

10CVSS7.3AI score0.05658EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.16 views

Ubuntu: Security Advisory (USN-2607-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.05658EPSS
Exploits0References2
Debian
Debian
added 2015/05/20 8:25 p.m.25 views

[SECURITY] [DSA 3261-2] libmodule-signature-perl regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3261-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 20, 2015 http://www.debian.org/security/faq -...

10CVSS1.5AI score0.05658EPSS
Exploits0
Debian
Debian
added 2015/05/20 8:25 p.m.34 views

[SECURITY] [DSA 3261-2] libmodule-signature-perl regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3261-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 20, 2015 http://www.debian.org/security/faq -...

10CVSS7.9AI score0.05658EPSS
Exploits0
NVD
NVD
added 2015/05/19 6:59 p.m.13 views

CVE-2015-3407

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files...

5CVSS7.4AI score0.02358EPSS
Exploits0References6
OSV
OSV
added 2015/05/19 6:59 p.m.11 views

CVE-2015-3407

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files...

7.4AI score
Exploits0References6
Cvelist
Cvelist
added 2015/05/19 6:0 p.m.21 views

CVE-2015-3407

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files...

7.3AI score0.02358EPSS
Exploits0References6
CVE
CVE
added 2015/05/19 6:0 p.m.62 views

CVE-2015-3407

CVE-2015-3407 affects Module::Signature for Perl; root cause is improper handling that allows bypassing signature verification when a SIGNATURE file omits listed files. The issue is widely referenced in multiple advisories and is addressed by upgrading Module::Signature to a fixed version (e.g., ...

5CVSS7.3AI score0.02358EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/05/18 12:0 a.m.23 views

Debian DSA-3261-1 : libmodule-signature-perl - security update

Multiple vulnerabilities were discovered in libmodule-signature-perl, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-3406 John Lightsey discovered that Module::Signature could parse the unsigned...

10CVSS7.8AI score0.05658EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2015/05/15 12:0 a.m.21 views

Debian Security Advisory DSA 3261-1 (libmodule-signature-perl - security update)

Multiple vulnerabilities were discovered in libmodule-signature-perl, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-3406 John Lightsey discovered that Module::Signature could parse the unsigned portio...

10CVSS0.7AI score0.05658EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2015/05/12 12:43 p.m.45 views

USN-2607-1: Module::Signature vulnerabilities

John Lightsey discovered that Module::Signature incorrectly handled PGP signature boundaries. A remote attacker could use this issue to trick Module::Signature into parsing the unsigned portion of the SIGNATURE file as the signed portion. CVE-2015-3406 John Lightsey discovered that...

10CVSS7.8AI score0.05658EPSS
Exploits0
securityvulns
securityvulns
added 2015/05/12 12:0 a.m.81 views

[USN-2607-1] Module::Signature vulnerabilities

========================================================================== Ubuntu Security Notice USN-2607-1 May 12, 2015 libmodule-signature-perl vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

10CVSS1.2AI score0.05658EPSS
Exploits0
Rows per page
Query Builder