14 matches found
openSUSE Security Advisory (SUSE-SU-2025:03629-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gstreamer-plugins-rs (SUSE-SU-2025:03629-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:03629-1 advisory. Update to version 0.12.11 jscPED-13826: - CVE-2024-32650: Fixed infinite loop in...
Security update for gstreamer-plugins-rs
This update for gstreamer-plugins-rs fixes the following issues: Update to version 0.12.11 jscPED-13826: CVE-2024-32650: Fixed infinite loop in rustls::conn::ConnectionCommon:completeio with proper client input bsc1223219. Patch Instructions: To install this SUSE update use the SUSE recommended...
SUSE-SU-2025:02810-1 Security update for rust-keylime
This update for rust-keylime fixes the following issues: - Update to version 0.2.7+141: CVE-2025-58266: shlex: Fixed command injection bsc1247193 - Update to version 0.2.7+117: CVE-2023-26964: rust-keylime: hyper,h2: stream stacking when H2 processing HTTP2 RSTSTREAM frames bsc1210344...
Linux Distros Unpatched Vulnerability : CVE-2024-32650
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a...
CVE-2024-32650 affecting package kata-containers for versions less than 3.2.0.azl2-3
CVE-2024-32650 affecting package kata-containers for versions less than 3.2.0.azl2-3. An upgraded version of the package is available that resolves this issue...
openSUSE 15 Security Update : git-cliff (openSUSE-SU-2024:0130-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0130-1 advisory. - Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When usin...
openSUSE Security Advisory (openSUSE-SU-2024:0130-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:0130-1 Security update for git-cliff
This update for git-cliff fixes the following issues: - update to 2.2.2: changelog Allow adding custom context changelog Ignore empty lines when using splitcommits parser Allow matching empty commit body Documentation updates - update to 2.2.1: Make rendering errors more verbose Support detecting...
Security update for git-cliff (important)
openSUSE Security Update: Security update for git-cliff Announcement ID: openSUSE-SU-2024:0130-1 Rating: important References: 1223218 Cross-References: CVE-2024-32650 CVSS scores: CVE-2024-32650 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-S...
CVE-2024-32650
Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...
CVE-2024-32650 vulnerabilities
Vulnerabilities for packages: kdash, xh, wasmcloud, cargo-audit, pgcat, samply...
CVE-2024-32650
Rustls is a modern TLS library written in Rust. rustls::ConnectionCommon::completeio could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a closenotify message immediately after clienthello, the server's completeio will get in an infinite...
CVE-2024-32650
CVE-2024-32650 affects rustls:complete_io in a blocking rustls server can enter an infinite loop if a client sends close_notify right after client_hello, leading to a denial of service. Fixes exist in rustls releases 0.23.5, 0.22.4, and 0.21.11. Remediation is to upgrade to one of these versions ...