18 matches found
openSUSE 15 Security Update : libu2f-host (openSUSE-SU-2021:1755-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1755-1 advisory. - Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An...
SUSE: Security Advisory (SUSE-SU-2021:1755-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:1340-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : libu2f-host (SUSE-SU-2021:1755-1)
This update for libu2f-host fixes the following issues : This update ships the u2f-host package jscECO-3687 bsc1184648 Version 1.1.10 released 2019-05-15 Add new devices to udev rules. Fix a potentially uninitialized buffer CVE-2019-9578, bsc1128140 Version 1.1.9 released 2019-03-06 Fix CID copyi...
SUSE SLED12 / SLES12 Security Update : libu2f-host (SUSE-SU-2019:1749-1)
This update for libu2f-host and pamu2f to version 1.0.8 fixes the following issues : Security issues fixed for libu2f-host : CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response bsc1128140. CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a...
openSUSE: Security Advisory for libu2f-host (openSUSE-SU-2019:1475-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2019:1475-1 Security update for libu2f-host
This update for libu2f-host fixes the following issues: Security issue fixed: - CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a custom made malicious USB device bsc1124781. This update was imported from the SUSE:SLE-15:Update update project...
Security update for libu2f-host (low)
openSUSE Security Update: Security update for libu2f-host Announcement ID: openSUSE-SU-2019:1475-1 Rating: low References: 1124781 Cross-References: CVE-2018-20340 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...
SUSE SLED15 / SLES15 Security Update : libu2f-host (SUSE-SU-2019:1340-1)
This update for libu2f-host fixes the following issues : Security issue fixed : CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a custom made malicious USB device bsc1124781. Note that Tenable Network Security has extracted the preceding description block...
SUSE-SU-2019:1340-1 Security update for libu2f-host
This update for libu2f-host fixes the following issues: Security issue fixed: - CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a custom made malicious USB device bsc1124781...
CVE-2018-20340
Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An attacker could use this to attempt to execute malicious code using a crafted USB device masquerading as a security token on a computer where the affected library is...
CVE-2018-20340
CVE-2018-20340 affects Yubico libu2f-host 1.1.6, with unchecked buffers in devs.c that could allow a crafted USB token to overflow a buffer and execute code on a host where the library is in use (not with a genuine YubiKey). Public advisories also reference CVE-2019-9578, related to uninitialized...
openSUSE Security Update : libu2f-host (openSUSE-2019-199)
This update for libu2f-host fixes the following issues : Security issue fixed : - CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a custom made malicious USB device bsc1124781. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
openSUSE: Security Advisory for libu2f-host (openSUSE-SU-2019:0199-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for libu2f-host (low)
openSUSE Security Update: Security update for libu2f-host Announcement ID: openSUSE-SU-2019:0199-1 Rating: low References: 1124781 Cross-References: CVE-2018-20340 Affected Products: openSUSE Leap 42.3 An update that fixes one vulnerability is now available. Description: This update for libu2f-ho...
Debian DSA-4389-1 : libu2f-host - security update
Christian Reitter discovered that libu2f-host, a library implementing the host-side of the U2F protocol, failed to properly check for a buffer overflow. This would allow an attacker with a custom made malicious USB device masquerading as a security key, and physical access to a computer where PAM...
[SECURITY] [DSA 4389-1] libu2f-host security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4389-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 11, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4389-1] libu2f-host security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4389-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 11, 2019 https://www.debian.org/security/faq -...