1488 matches found
OESA-2025-2135 libtpms security update
A library providing TPM functionality for VMs. Targeted for integration into Qemu. Security Fixes: Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by th...
OESA-2025-2133 libtpms security update
A library providing TPM functionality for VMs. Targeted for integration into Qemu. Security Fixes: Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by th...
OESA-2025-2126 krb5 security update
Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. Security Fixes: A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due ...
Medium: krb5
Issue Overview: krb5: overflow when calculating ulog block size CVE-2025-24528 A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an...
RHEL 8 : krb5 (RHSA-2025:15003)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:15003 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending password...
Alibaba Cloud Linux 3 : 0149: virt:an and virt-devel:an (ALINUX3-SA-2025:0149)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0149 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-49133: Libtpms is a library that targets t...
cipher-base is missing type checks, leading to hash rewind and passing on crafted data
Summary This affects e.g. create-hash and crypto-browserify, so I'll describe the issue against that package Also affects create-hmac and other packages Node.js createHash works only on strings or instances of Buffer, TypedArray, or DataView. Missing input type checks in npm create-hash polyfill ...
Malicious code in passport-hmac-aws4 (npm)
The package passport-hmac-aws4 was found to contain malicious code...
MAL-2025-28900 Malicious code in passport-hmac-aws4 (npm)
The package passport-hmac-aws4 was found to contain malicious code...
RHEL 9 : krb5 (RHSA-2025:13777)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:13777 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending password...
CLSA-2025-1755113592 Fix CVE(s): CVE-2025-3576
SECURITY UPDATE: prevent spoofing vulnerability in GSSAPI-protected messages using RC4-HMAC-MD5 due to weaknesses in MD5 checksum design - debian/patches/CVE-2025-3576: don't issue session keys with deprecated enctypes. Updates tests. - CVE-2025-3576...
Linux Distros Unpatched Vulnerability : CVE-2019-11759
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute...
Libtpms contains a possible out-of-bound access and abort due to HMAC signing issue
...
ruby-jwt < v3.0.0.beta1 was discovered to contain weak encryption
ruby-jwt v3.0.0.beta1 was discovered to contain weak encryption. NOTE: the Supplier's perspective is "keysize is not something that is enforced by this library. Currently more recent versions of OpenSSL are enforcing some key sizes and those restrictions apply to the users of this gem also."...
Linux Distros Unpatched Vulnerability : CVE-2017-17806
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The HMAC implementation crypto/hmac.c in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing ...
Linux Distros Unpatched Vulnerability : CVE-2024-45157
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected algorithm is not used. Unlike previously documented, enabling...
RLSA-2025:8411 Moderate: krb5 security update
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...
CVE-2025-42959
An unauthenticated attacker may exploit a scenario where a Hashed Message Authentication Code HMAC credential, extracted from a system missing specific security patches, is reused in a replay attack against a different system. Even if the target system is fully patched, successful exploitation...
CVE-2025-42959
An unauthenticated attacker may exploit a scenario where a Hashed Message Authentication Code HMAC credential, extracted from a system missing specific security patches, is reused in a replay attack against a different system. Even if the target system is fully patched, successful exploitation...
CVE-2025-42959
CVE-2025-42959 affects SAP NetWeaver ABAP Server and SAP ABAP Platform. An unauthenticated attacker can reuse an HMAC credential extracted from a system missing a patch to perform a replay attack against another system, potentially leading to complete system compromise impacting confidentiality, ...