Lucene search
K

207 matches found

Cvelist
Cvelist
added 2026/04/24 5:16 p.m.36 views

CVE-2026-41676 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.2CVSS0.00298EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 5:16 p.m.5 views

EUVD-2026-25582

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.2CVSS5.3AI score0.00298EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/24 5:16 p.m.4 views

CVE-2026-41676 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.2CVSS5.4AI score0.00298EPSS
Exploits0References1
CVE
CVE
added 2026/04/24 5:16 p.m.63 views

CVE-2026-41676

CVE-2026-41676 affects rust-openssl bindings. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive incorrectly pass in/out lengths to EVP_PKEY_derive by using len = buf.len(). On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore this incoming keylen and write the full share...

9.8CVSS5.4AI score0.00298EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/24 5:16 p.m.3 views

CVE-2026-41676

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extra...

9.2CVSS5.4AI score0.00298EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/22 9:22 p.m.15 views

GHSA-PQF5-4PQQ-29F5 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming keylen, unconditionally writing the full shared secret 32/56/prime-size bytes. A...

9.2CVSS5.8AI score0.00298EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/04/22 9:22 p.m.17 views

rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

Deriver::derive and PkeyCtxRef::derive sets len = buf.len and passes it as the in/out length to EVPPKEYderive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming keylen, unconditionally writing the full shared secret 32/56/prime-size bytes. A...

9.8CVSS5.8AI score0.00298EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34619

Name of the Vulnerable Software and Affected Versions rust-openssl versions 0.9.27 through 0.10.77 Description An issue exists where Deriver::derive and PkeyCtxRef::derive set the len variable to buf.len and pass it as the in/out length to EVP PKEY derive. When using OpenSSL 1.1.x, the X25519,...

9.8CVSS6AI score0.00298EPSS
Exploits0References96
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:16 p.m.1 views

CVE-2026-31397

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix use of NULL folio in movepageshugepmd movepageshugepmd handles UFFDIOMOVE for both normal THPs and huge zero pages. For the huge zero page path, srcfolio is explicitly set to NULL, and is used as a sentinel to...

5.8AI score0.00119EPSS
Exploits0References4Affected Software1
Fedora
Fedora
added 2026/03/27 1:18 a.m.5 views

[SECURITY] Fedora 43 Update: rust-asn1_derive-0.22.0-1.fc43

...

9.8CVSS5.8AI score0.00704EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/03/27 12:0 a.m.7 views

Fedora: Security Advisory (FEDORA-2026-9d5b9f45ec)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.00704EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/26 9:31 p.m.10 views

EUVD-2026-16336

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

5.3CVSS5.8AI score0.0116EPSS
Exploits0References3
NVD
NVD
added 2026/03/26 9:17 p.m.5 views

CVE-2026-2100

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

7.5CVSS0.0116EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/03/26 9:17 p.m.6 views

CVE-2026-2100

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

7.5CVSS5.9AI score0.0116EPSS
Exploits0References1
CVE
CVE
added 2026/03/26 8:1 p.m.54 views

CVE-2026-2100

CVE-2026-2100 – p11-kit : A flaw allows a remote attacker to trigger a NULL dereference by calling C_DeriveKey on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL, potentially causing an application-level denial of service or other undefined states. Public...

7.5CVSS5.8AI score0.0116EPSS
Exploits0References10Affected Software3
Cvelist
Cvelist
added 2026/03/26 8:1 p.m.37 views

CVE-2026-2100 P11-kit: null dereference via c_derivekey with specific null parameters

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

5.3CVSS0.0116EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2026/03/26 8:1 p.m.14 views

CVE-2026-2100 P11-kit: null dereference via c_derivekey with specific null parameters

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

5.3CVSS5.7AI score0.0116EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:1 p.m.3 views

CVE-2026-2100

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

7.5CVSS5.8AI score0.0116EPSS
Exploits0References10
AlpineLinux
AlpineLinux
added 2026/03/26 8:1 p.m.3 views

CVE-2026-2100

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the CDeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potential...

7.5CVSS5.9AI score0.0116EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.10 views

P11-glue P11-kit 安全漏洞

P11-glue P11-kit is a tool developed by the P11-glue individual developer, used for loading and enumerating PKCS modules. P11-glue P11-kit has security vulnerabilities; these vulnerabilities arise from the CDeriveKey function potentially returning uninitialized values when processing certain...

7.5CVSS5.8AI score0.0116EPSS
Exploits0References3
Rows per page
Query Builder