Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-1544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Generating the ECDSA nonce k samples a random number r and then truncates this randomness with a modular reduction mod n where n is the order of the elliptic...

4.9CVSS5.8AI score0.00349EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: mariadb (CVE-2024-1544)

The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1544 advisory. - Generating the ECDSA nonce k samples a random number r and then truncates this randomness with a modular...

4.9CVSS5.6AI score0.00349EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.8 views

CBL Mariner 2.0 Security Update: mariadb (CVE-2024-1544)

The version of mariadb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1544 advisory. - Generating the ECDSA nonce k samples a random number r and then truncates this randomness with a modular...

4.9CVSS5.5AI score0.00349EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.14 views

Slackware: Security Advisory (SSA:2024-253-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS5.2AI score0.0056EPSS
Exploits0References6
Slackware Linux
Slackware Linux
added 2024/09/09 5:33 p.m.23 views

[slackware-security] netatalk

New netatalk packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/netatalk-3.2.8-i586-1slack15.0.txz: Upgraded. Bump bundled WolfSSL library to stable version 5.7.2, GitHub 1433. For more informatio...

10CVSS7.1AI score0.0056EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.13 views

Slackware Linux 15.0 / current netatalk Multiple Vulnerabilities (SSA:2024-253-01)

The version of netatalk installed on the remote host is prior to 3.2.8. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-253-01 advisory. New netatalk packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...

10CVSS5.5AI score0.0056EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/08/27 6:44 p.m.21 views

CVE-2024-1544 ECDSA nonce bias caused by truncation

Generating the ECDSA nonce k samples a random number r and then truncates this randomness with a modular reduction mod n where n is the order of the elliptic curve. Meaning k = r mod n. The division used during the reduction estimates a factor qe by dividing the upper two digits a digit having e....

4.1CVSS0.00349EPSS
Exploits0References2
CVE
CVE
added 2024/08/27 6:44 p.m.74 views

CVE-2024-1544

CVE-2024-1544 describes a bias in the ECDSA nonce generation when k is obtained as r mod n, where a control-flow dependent reduction leaks MSB bias in k. The issue can enable lattice-reduction based reconstruction of k for certain curves (e.g., SECP160R1 with about 15 bits of bias). The connected...

4.9CVSS6.9AI score0.00349EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder