Lucene search
K

6 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.7 views

The vulnerability of the dsa_sign_setup function in the OpenSSL library, which relates to the disclosure of protected information, allows attackers to circumvent cryptographic mechanisms used for encryption protection.

The vulnerability of the dsasignsetup function in the OpenSSL library is related to the exposure of protected information. Exploiting this vulnerability could allow an attacker to circumvent the cryptographic mechanisms used for encryption protection...

5.5CVSS6.8AI score0.01174EPSS
Exploits1References69Affected Software5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2018:2089-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS6.3AI score0.00887EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2018/11/26 12:0 a.m.36 views

SUSE SLED12 / SLES12 Security Update : libgcrypt (SUSE-SU-2018:2452-2)

This update for libgcrypt fixes the following issues : The following security vulnerability was addressed : CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for ECDSA signatures bsc1097410. The following other issues were fixed: Extended the fipsdrv dsa-sign and dsa-verify...

4.7CVSS6AI score0.00887EPSS
Exploits1References6
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/03 9:7 p.m.81 views

Security update for libgcrypt (moderate)

This update for libgcrypt fixes the following issues: The following security vulnerability was addressed: - CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for ECDSA signatures bsc1097410. The following other issues were fixed: - Extended the fipsdrv dsa-sign and dsa-veri...

1.8AI score0.00887EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2016/09/30 12:0 a.m.652 views

OpenSSL 1.0.2 < 1.0.2i Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.2i. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2i advisory. - Multiple memory leaks in t1lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to...

9.8CVSS7.5AI score0.95707EPSS
Exploits8References30
OSV
OSV
added 2016/06/20 1:59 a.m.4 views

ALPINE-CVE-2016-2178

The dsasignsetup function in crypto/dsa/dsaossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack...

5.5CVSS8.4AI score0.01174EPSS
Exploits1References1
Rows per page
Query Builder