Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.19 views

openSUSE: Security Advisory for libressl (openSUSE-SU-2018:2592-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.7CVSS5.2AI score0.00321EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.33 views

openSUSE Security Update : libressl (openSUSE-2018-950)

This update for libressl to version 2.8.0 fixes the following issues : Security issues fixed : - CVE-2018-12434: Avoid a timing side-channel leak when generating DSA and ECDSA signatures. boo1097779 - Reject excessively large primes in DH key generation. Other bugs fixed : - Fixed a pair of 20+...

4.7CVSS5.5AI score0.00321EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/09/04 12:0 a.m.22 views

openSUSE: Security Advisory for libressl (openSUSE-SU-2018:2597-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS5.2AI score0.01056EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.25 views

openSUSE Security Update : libressl (openSUSE-2018-953)

This update for libressl to version 2.8.0 fixes the following issues : Security issues fixed : - CVE-2018-12434: Avoid a timing side-channel leak when generating DSA and ECDSA signatures. boo1097779 - Reject excessively large primes in DH key generation. - CVE-2018-8970: Fixed a bug in...

7.4CVSS5.5AI score0.01056EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2018/09/03 3:9 p.m.77 views

Security update for libressl (moderate)

This update for libressl to version 2.8.0 fixes the following issues: Security issues fixed: - CVE-2018-12434: Avoid a timing side-channel leak when generating DSA and ECDSA signatures. boo1097779 - Reject excessively large primes in DH key generation. Other bugs fixed: - Fixed a pair of 20+...

1.9CVSS1.4AI score0.00321EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/06/15 2:0 a.m.30 views

CVE-2018-12434

LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical ho...

4.8AI score0.00321EPSS
Exploits0References3
CVE
CVE
added 2018/06/15 2:0 a.m.65 views

CVE-2018-12434

CVE-2018-12434 affects LibreSSL up to 2.6.5 and 2.7.x up to 2.7.4, enabling a memory-cache side-channel (ROHNP) during DSA/ECDSA signature generation. An attacker with local access or co-residency on the same physical host can potentially recover a private key. The disclosures in the connected Re...

4.7CVSS4.7AI score0.00321EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder