4 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-29242
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite...
CVE-2022-29242 Buffer Overflow on creating key transport blob in GOST Engine
GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite TLSGOSTR341112256WITHKUZNYECHIKCTROMAC is agreed and the server uses 512 bit GOST secret keys are vulnerable to buffer overflow. GOST engine version 3.0.1...
CVE-2022-29242
The CVE concerns the GOST engine (OpenSSL) used for Russian GOST crypto. The issue affects TLS clients using the GOST engine when the cipher suite TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC is negotiated and the server uses 512‑bit GOST keys, leading to a buffer overflow. The patch is in GOST e...
CVE-2022-29242
GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite TLSGOSTR341112256WITHKUZNYECHIKCTROMAC is agreed and the server uses 512 bit GOST secret keys are vulnerable to buffer overflow. GOST engine version 3.0.1...