Lucene search
K

4 matches found

OSV
OSV
added 2018/12/03 2:32 p.m.11 views

SUSE-SU-2018:3964-1 Security update for openssl1

This update for openssl1 fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses bsc1113534. - CVE-2016-8610: Adjusted current fix and...

7.5CVSS6.4AI score0.39657EPSS
Exploits5References8
OSV
OSV
added 2018/11/22 3:26 p.m.8 views

SUSE-SU-2018:3864-1 Security update for openssl

This update for openssl fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses bsc1113534. - CVE-2018-0737: Corrected the current erro...

7.5CVSS6.5AI score0.39657EPSS
Exploits5References11
OSV
OSV
added 2018/11/22 3:25 p.m.6 views

SUSE-SU-2018:3866-1 Security update for openssl

This update for openssl fixes the following issues: Security issues fixed: - CVE-2018-0734: Fixed timing vulnerability in DSA signature generation bsc1113652. - CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses bsc1113534. - Add missing timing side channel patch for...

5.9CVSS5.7AI score0.12154EPSS
Exploits4References7
OSV
OSV
added 2018/10/17 4:27 p.m.3 views

GHSA-4MV7-CQ75-3QJM Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15

The Bouncy Castle Java library before 1.51 does not validate a point is withing the elliptic curve, which makes it easier for remote attackers to obtain private keys via a series of crafted elliptic curve Diffie Hellman ECDH key exchanges, aka an "invalid curve attack."...

5CVSS7.2AI score0.0482EPSS
Exploits0References23
Rows per page
Query Builder