PT-2022-6084

Name of the Vulnerable Software and Affected Versions Samba Active Directory DCs affected versions not specified Description The issue is related to the use of the RC4-HMAC cryptographic algorithm in the implementation of the Heimdal Kerberos protocol in Samba. This can allow a remote attacker to...

PT-2022-7023 · Python +6 · Python +6

Name of the Vulnerable Software and Affected Versions: Python versions through 3.9.1 Python version 3.12.0b1 Description: The issue is related to the hmac.compare digest function in the Lib/hmac.py module, where constant-time-defeating optimisations were possible in the accumulator variable. This...

gnutls and nettle security, bug fix, and enhancement update

gnutls 3.7.6-12 - fips: mark PBKDF2 with short key and output sizes non-approved - fips: only mark HMAC as approved in PBKDF2 - fips: mark gnutlskeygenerate with short key sizes non-approved - fips: fix checking on hash algorithm used in ECDSA - fips: preserve operation context around FIPS...

Man-in-the-Middle (MitM)

github.com/dexidp/dex is vulnerable to man-in-the-middle attacks. The vulnerability exists because the library does not properly implement the HMAC protection on the approval endpoint, allowing an attacker to capture the id token via intercepted authorization code...

Dex vulnerable to Man-in-the-Middle allowing ID token capture via intercepted authorization code

Impact Dex instances with public clients and by extension, clients accepting tokens issued by those Dex instances are affected by this vulnerability. An attacker can exploit this vulnerability by making a victim navigate to a malicious website and guiding them through the OIDC flow, stealing the...

GHSA-VH7G-P26C-J2CW Dex vulnerable to Man-in-the-Middle allowing ID token capture via intercepted authorization code

Impact Dex instances with public clients and by extension, clients accepting tokens issued by those Dex instances are affected by this vulnerability. An attacker can exploit this vulnerability by making a victim navigate to a malicious website and guiding them through the OIDC flow, stealing the...

GSD-2022-1006444 ipv6: sr: fix out-of-bounds read when setting HMAC data.

ipv6: sr: fix out-of-bounds read when setting HMAC data. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.293 by commit...

GSD-2022-1006401 ipv6: sr: fix out-of-bounds read when setting HMAC data.

ipv6: sr: fix out-of-bounds read when setting HMAC data. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.143 by commit...

PT-2022-34689 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.258 Description: The issue concerns an out-of-bounds read when setting HMAC data in the IPv6 segment routing SR functionality. This problem was introduced in version v4.10 and is fixed in version v4.19.258...

PT-2022-34594 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.9 Description: The issue concerns an out-of-bounds read when setting HMAC data in the IPv6 segment routing SR functionality. The actual impact and attack plausibility have not yet been proven...

PT-2022-34658 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.143 Description: The issue concerns an out-of-bounds read when setting HMAC data in the IPv6 segment routing SR functionality. This problem was introduced in version v4.10 and is fixed in version v5.10.143...

Ubuntu: Security Advisory (USN-859-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2022-14602 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: In the keymaster ipc.cpp, there is a possibility to force gatekeeper, fingerprint, and faceauth to use a known HMAC key. This could lead to local escalation of privilege with no...

PUB-A-222339795

In TBD of keymasteripc.cpp, there is a possible to force gatekeeper, fingerprint, and faceauth to use a known HMAC key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

MAL-2022-3850 Malicious code in insomnia-plugin-simple-hmac-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 82257b4c71933f16336920865f08941bf1fd250ffd06dd3e34a99e3319b78012 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OPENSUSE-SU-2022:10018-1 Security update for atheme

This update for atheme fixes the following issues: atheme was updated to release 7.2.12: CVE-2022-24976: Fixed General authentication bypass in Atheme IRC services with InspIRCd 3 boo1195989 Track SASL login EID Update to release 7.2.11 Add a preliminary Turkish translation Add HMAC-MD5 verify-on...

Security update for atheme (important)

openSUSE Security Update: Security update for atheme Announcement ID: openSUSE-SU-2022:10018-1 Rating: important References: 1174075 1195989 Cross-References: CVE-2022-24976 CVSS scores: CVE-2022-24976 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports...

CVE-2022-29226 Trivial authentication bypass in Envoy

Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter implementation does not include a mechanism for validating access tokens, so by design when the HMAC signed cookie is missing a full authentication flow should be triggered. However, the current...

Key confusion through non-blocklisted public key formats

Impact What kind of vulnerability is it? Who is impacted? Disclosed by Aapo Oksman Senior Security Specialist, Nixu Corporation. PyJWT supports multiple different JWT signing algorithms. With JWT, an attacker submitting the JWT token can choose the used signing algorithm. The PyJWT library requir...

GHSA-6MWH-FW4P-75FJ Deserialization of Untrusted Data in Apache Tapestry

By manipulating classpath asset file URLs, an attacker could guess the path to a known file in the classpath and have it downloaded. If the attacker found the file with the value of the tapestry.hmac-passphrase configuration symbol, most probably the webapp's AppModule class, the value of this...