4 matches found
openSUSE 15 Security Update : perl-CryptX (openSUSE-SU-2024:0112-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0112-1 advisory. - In the CryptX module before 0.062 for Perl, gcmdecryptverify and chacha20poly1305decryptverify do not verify the tag. CVE-2018-25099 Note that Nessus h...
openSUSE Security Advisory (openSUSE-SU-2024:0112-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-25099
In the CryptX module before 0.062 for Perl, gcmdecryptverify and chacha20poly1305decryptverify do not verify the tag...
CVE-2018-25099
The CVE-2018-25099 issue affects the CryptX Perl module prior to 0.062, where gcm_decrypt_verify() and chacha20poly1305_decrypt_verify() fail to verify the authentication tag. This can lead to input tampering without detection, as summarized in multiple advisories. Public mentions show remediatio...