Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Oracle linux
Oracle linuxadded 2019/03/13 12:0 a.m.313 views

openssl security update

1.0.2k-16.0.1.el76.1 - Bump release for rebuild. 1.0.2k-16.1 - use SHA-256 in FIPS RSA pairwise key check - fix CVE-2018-5407 - EC signature local timing side-channel key extraction 1.0.2k-16 - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on...

10CVSS0.5AI score0.94464EPSS
Exploits179
Veracode
Veracodeadded 2018/10/30 3:53 a.m.30 views

Side-Channel Attack

libssl.so is vulnerable to side-channel attack. An attacker is able to determine the length of a value used in DSA operations from a large number of signatures...

5.9CVSS6.1AI score0.05057EPSS
Exploits0References37Affected Software13
RedHat Linux
RedHat Linuxadded 2017/01/25 8:4 p.m.3 views

openssl: Non-constant time codepath followed for certain operations in DSA implementation

It was discovered that OpenSSL did not always use constant time operations when computing Digital Signature Algorithm DSA signatures. A local attacker could possibly use this flaw to obtain a private DSA key belonging to another user or service running on the same system...

5.5CVSS7.2AI score0.00189EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2016/10/17 12:0 a.m.42 views

OracleVM 3.2 : openssl (OVMSA-2016-0141)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2182 - possible buffer overflow in BNbn2dec - fix CVE-2016-6306 - certificate messag...

9.8CVSS7.3AI score0.40993EPSS
Exploits7References6
Tenable Nessus
Tenable Nessusadded 2016/10/17 12:0 a.m.48 views

Oracle Linux 5 : openssl (ELSA-2016-3627)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3627 advisory. - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2182 - possible buffer overflow i...

9.8CVSS7.5AI score0.40993EPSS
Exploits7References6
Oracle linux
Oracle linuxadded 2016/10/13 12:0 a.m.246 views

openssl security update

0.9.8e-40.0.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2182 - possible buffer overflow in BNbn2dec - fix CVE-2016-6306 - certificate message OOB reads - mitigate CVE-2016-2183 - degrade all 64bit block ciphers and RC4 to...

9.8CVSS4.7AI score0.40993EPSS
Exploits7
Tenable Nessus
Tenable Nessusadded 2016/09/28 12:0 a.m.59 views

Oracle Linux 6 / 7 : openssl (ELSA-2016-1940)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-1940 advisory. - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in...

9.8CVSS7.8AI score0.40993EPSS
Exploits8References10
Oracle linux
Oracle linuxadded 2016/09/27 12:0 a.m.60 views

openssl security update

1.0.1e-48.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in DTLS - fix CVE-2016-2180 - OOB read in TSOBJprintbio - fix CVE-2016-2181 - DTLS1 replay protection and unprocessed records issue - fix...

9.8CVSS1.4AI score0.40993EPSS
Exploits8
Rows per page
Query Builder