Lucene search
+L

6 matches found

osv
osv
added 2026/07/06 6:28 a.m.5 views

OESA-2026-2860 gnupg2 security update

GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 also known as PGP. GnuPG enables encryption and signing of data and communication, and features a versatile key management system as well as access modules for public key directories. Security Fixes: CMS...

2.9CVSS5.9AI score0.0011EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/23 12:0 a.m.16 views

PT-2026-51574

Name of the Vulnerable Software and Affected Versions GnuPG versions prior to 2.5.21 Description CMS Cryptographic Message Syntax parsing in gpgsm mishandles the CMS format for AES-GCM. The issue occurs because the aes-ICVlen is accepted as 4 bytes, whereas it is supposed to be 12 bytes...

2.9CVSS5.7AI score0.0011EPSS
Exploits0References15
osv
osv
added 2026/06/22 12:23 p.m.4 views

SUSE-SU-2026:22251-1 Security update for openssl-3

This update for openssl-3 fixes the following issues - CVE-2026-2673: TLS 1.3 servers may choose unexpected key agreement group bsc1259652. - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion bsc1266340. - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based...

9.1CVSS7.1AI score0.02719EPSS
Exploits0References31
wolfi
wolfi
added 2026/06/11 7:48 p.m.12 views

CVE-2026-34182 vulnerabilities

Vulnerabilities for packages: openssl...

9.1CVSS5.4AI score0.00237EPSS
Exploits0
nessus
nessus
added 2026/06/10 12:0 a.m.148 views

Linux Distros Unpatched Vulnerability : CVE-2026-34182

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue Summary: Cryptographic Message Services CMS processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedDa...

9.1CVSS6.9AI score0.00237EPSS
Exploits0References2
debiancve
debiancve
added 2026/06/09 4:3 p.m.36 views

CVE-2026-34182

Issue Summary: Cryptographic Message Services CMS processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various potential compromises. Impact Summary: Attackers making use of these vulnerabilities may achieve...

9.1CVSS5.4AI score0.00237EPSS
Exploits0
Rows per page
Query Builder