Lucene search
K

8 matches found

OSV
OSV
added 2020/06/17 3:11 p.m.2 views

USN-4397-2 nss vulnerability

USN-4397-1 fixed a vulnerability in NSS. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Cesar Pereida Garcia discovered that NSS incorrectly handled DSA key generation. A local attacker could possibly use this issue to perform a...

4.4CVSS6.7AI score0.00651EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/06/17 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-4397-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.4AI score0.0134EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.39 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : NSS vulnerabilities (USN-4397-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4397-1 advisory. It was discovered that NSS incorrectly handled the TLS State Machine. A remote attacker could possibly use this issue to cause NS...

6.5CVSS7.3AI score0.0134EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2020/06/16 4:56 p.m.86 views

USN-4397-1: NSS vulnerabilities

It was discovered that NSS incorrectly handled the TLS State Machine. A remote attacker could possibly use this issue to cause NSS to hang, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 19.10. CVE-2019-17023 Cesar Pereida Garcia discovered that NSS...

6.5CVSS7.3AI score0.0134EPSS
Exploits0
Cvelist
Cvelist
added 2019/09/18 10:23 p.m.30 views

CVE-2019-3740

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Information Exposure Through Timing Discrepancy vulnerabilities during DSA key generation. A malicious remote attacker could potentially exploit those vulnerabilities to recover DSA keys...

6.5CVSS8.1AI score0.03753EPSS
Exploits0References7
CVE
CVE
added 2019/09/18 10:23 p.m.245 views

CVE-2019-3740

CVE-2019-3740 concerns RSA BSAFE Crypto-J used by Oracle GoldenGate Install (Dell BSAFE Crypto-J). The root cause is a timing-discrepancy vulnerability during DSA key generation that could allow a remote attacker to recover DSA private keys. Affected product/component: Oracle GoldenGate (Install ...

6.5CVSS7.9AI score0.03753EPSS
Exploits0References7Affected Software3
OSV
OSV
added 2018/06/04 1:29 p.m.7 views

CVE-2016-1000343

In the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key pair generator generates a weak private key if used with default values. If the JCA key pair generator is not explicitly initialised with DSA parameters, 1.55 and earlier generates a private value assuming a 1024 bit key size...

7.5CVSS7.8AI score
Exploits0References8
ALT Linux
ALT Linux
added 2009/04/30 12:0 a.m.22 views

Security fix for the ALT Linux 10 package gnutls30 version 2.6.6-alt1

April 30, 2009 Afanasov Dmitry 2.6.6-alt1 - 2.6.6 release. + fix Corrected double free on signature verification failure CVE-2009-1415 + fix DSA key generation CVE-2009-1416 + fix gnutls-cli expiration/activation time check CVE-2009-1417 - release fixes 19873 also...

7.5CVSS7.1AI score0.07922EPSS
Exploits9
Rows per page
Query Builder