EUVD-2014-9548

Malware in sbrugna...

SUSE: Security Advisory (SUSE-SU-2016:2280-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:0718-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-9742

The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group...

Information disclosure

The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group...

CVE-2014-9742

The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group...

CVE-2014-9742

CVE-2014-9742 : The Miller–Rabin primality test in Botan before 1.10.8 and in 1.11.x before 1.11.9 improperly uses a single random base, weakening cryptographic protection for Diffie–Hellman groups. Connected advisories confirm this vulnerability in Botan’s pre-1.10.8 and specific 1.11.x releases...

CVE-2014-9742

The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group...

Fedora 24 : proftpd-1.3.5b-1.fc24 (2016-ac3587be9a)

Cumulative maintenance release from upstream. Highlights are: SSH RSA hostkeys smaller than 2048 bits now work properly. MLSD response lines are now properly CRLF terminated. Fixed selection of DH groups from TLSDHParamFile CVE-2016-3125 Various other bug fixes are also included. Note that Tenabl...

openSUSE Security Update : libssh2_org (openSUSE-2016-388)

This update for libssh2org fixes the following issues : Security issue fixed : - CVE-2016-0787 bsc967026: Weakness in diffie-hellman secret key generation lead to much shorter DH groups then needed, which could be used to retrieve server keys. A feature was added : - Support of SHA256 digests for...

Fedora 23 : proftpd-1.3.5b-1.fc23 (2016-977d57cf2d)

Cumulative maintenance release from upstream. Highlights are: SSH RSA hostkeys smaller than 2048 bits now work properly. MLSD response lines are now properly CRLF terminated. Fixed selection of DH groups from TLSDHParamFile CVE-2016-3125. Various other bug fixes are also included. Note that Tenab...

SUSE SLED11 / SLES11 Security Update : libssh2_org (SUSE-SU-2016:0723-1)

This update for libssh2org fixes the following issues : - Add SHA256 support for DH group exchange fate320343, bsc961964 - fix CVE-2016-0787 bsc967026 - Weakness in diffie-hellman secret key generation lead to much shorter DH groups then needed, which could be used to retrieve server keys. Note...

SUSE SLED12 / SLES12 Security Update : libssh2_org (SUSE-SU-2016:0718-1)

This update for libssh2org fixes the following issues : Security issue fixed : - CVE-2016-0787 bsc967026: Weakness in diffie-hellman secret key generation lead to much shorter DH groups then needed, which could be used to retrieve server keys. A feature was added : - Support of SHA256 digests for...

SUSE-SU-2016:0344-1 Security update for socat

This update for socat fixed the following issues: - bsc964844: Fixed security advisory 8, Stack overflow in parser, http://www.openwall.com/lists/oss-security/2016/02/01/5. - bsc938913: Improved resilience against Logjam attacks CVE-2015-4000 by increasing the size of the default DH group from 51...

FileZilla 3.11.0.2 SFTP Module - Denial of Service

FileZilla 3.11.0.2 SFTP Module - Denial of Service ''' Exploit title: filezilla 3.11.0.2 sftp module denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link:...

Putty 0.64 Denial Of Service

Exploit title: putty v0.64 denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link: http://the.earth.li/sgtatham/putty/latest/x86/putty-0.64-installer.exe Version: 0.64 Author: 3unnym00n Details: -------- when doing the ssh dh group exchange...

Putty 0.64 - Denial of Service

Putty 0.64 - Denial of Service ''' Exploit title: putty v0.64 denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link: http://the.earth.li/sgtatham/putty/latest/x86/putty-0.64-installer.exe Version: 0.64 Author: 3unnym00n Details: --------...

FileZilla 3.11.0.2 SFTP Module - Denial of Service

''' Exploit title: filezilla 3.11.0.2 sftp module denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link:...

Putty 0.64 - Denial of Service

''' Exploit title: putty v0.64 denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link: http://the.earth.li/sgtatham/putty/latest/x86/putty-0.64-installer.exe Version: 0.64 Author: 3unnym00n Details: -------- when doing the ssh dh group...

FileZilla 3.11.0.2 Denial Of Service

Exploit title: filezilla 3.11.0.2 sftp module denial of service vulnerability Date: 5-6-2015 Vendor homepage: http://www.chiark.greenend.org.uk Software Link:...