Lucene search
K

73 matches found

OSV
OSV
added 2022/11/14 11:15 p.m.4 views

UBUNTU-CVE-2022-40735

The Diffie-Hellman Key Agreement Protocol allows use of long exponents that arguably make certain calculations unnecessarily expensive, because the 1996 van Oorschot and Wiener paper found that "appropriately short exponents" can be used when there are adequate subgroup constraints, and these sho...

7.5CVSS6.8AI score0.02301EPSS
Exploits0References15
CVE
CVE
added 2022/11/14 12:0 a.m.300 views

CVE-2022-40735

CVE-2022-40735 describes a Diffie-Hellman Key Agreement Page vulnerability: long exponents may lead to expensive DHE modular-exponentiation and potential server-side resource consumption. The issue is tied to exponent size under subgroup constraints, with applicability depending on protocol (e.g....

7.5CVSS7.2AI score0.02301EPSS
Exploits0References12Affected Software1
CNNVD
CNNVD
added 2022/11/14 12:0 a.m.4 views

Diffie-Hellman Key Agreement Protocol 资源管理错误漏洞

The Diffie-Hellman Key Agreement Protocol is a key negotiation protocol. It was originally described in Diffie and Hellman's seminal paper on public key cryptography. The key negotiation protocol allows Alice and Bob to exchange public key values and securely compute a shared key K based on...

7.5CVSS7.2AI score0.02301EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2022/04/12 3:9 p.m.3 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
Snyk
Snyk
added 2022/02/17 5:33 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview std/math/big is a Go standard library package std/math/big Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. Go Vulnerability Report: Rat.SetString and Rat.UnmarshalText may cause a panic or an unrecoverable fatal error if passed...

8.7CVSS6.8AI score0.034EPSS
Exploits1References3
OSV
OSV
added 2022/02/17 5:33 p.m.40 views

GO-2021-0242 Panic on inputs with large exponents in math/big

Rat.SetString and Rat.UnmarshalText may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents...

7.5CVSS6.6AI score0.034EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/12/13 3:29 p.m.4 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/12/09 8:19 p.m.2 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/11/09 5:49 p.m.4 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/10/19 8:23 p.m.3 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/09/16 3:24 p.m.2 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/09/15 1:41 p.m.3 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
OSV
OSV
added 2021/09/06 7:15 p.m.2 views

DEBIAN-CVE-2021-40530

The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's...

5.9CVSS5.9AI score0.01157EPSS
Exploits1References1
Prion
Prion
added 2021/09/06 7:15 p.m.24 views

Cross site scripting

The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's...

2.6CVSS6.8AI score0.01423EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2021/09/06 7:15 p.m.33 views

CVE-2021-40528

The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's...

5.9CVSS6.8AI score0.01423EPSS
Exploits1References6
OSV
OSV
added 2021/09/06 7:15 p.m.2 views

UBUNTU-CVE-2021-40529

The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the...

5.9CVSS5.8AI score0.01532EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/08/31 3:1 p.m.2 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/08/11 5:14 a.m.4 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/08/10 7:52 a.m.3 views

golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.034EPSS
Exploits1References5
OSV
OSV
added 2021/08/02 7:15 p.m.3 views

DEBIAN-CVE-2021-33198

In Go before 1.15.13 and 1.16.x before 1.16.5, there can be a panic for a large exponent to the math/big.Rat SetString or UnmarshalText method...

7.5CVSS6.3AI score0.034EPSS
Exploits1References1
Rows per page
Query Builder