44 matches found
UBUNTU-CVE-2017-8854
wolfSSL before 3.10.2 has an out-of-bounds memory access with loading crafted DH parameters, aka a buffer overflow triggered by a malformed temporary DH file...
MGASA-2016-0128 Updated proftpd packages fix security vulnerability
A bug with security implications was found in the modtls module in ProFTPD before 1.3.5b. This module has a configuration option TLSDHParamFile to specify user-defined Diffie Hellman parameters. The software would ignore the user-defined parameters and use Diffie Hellman key exchanges with 1024...
DSA-3325-2 apache2 - regression update
Bulletin has no description...
nss: Do not allow p-1 as a public DH value (MFSA 2014-12)
It was found that NSS accepted weak Diffie-Hellman Key exchange DHKE parameters. This could possibly lead to weak encryption being used in communication between the client and the server...