2 matches found
SUSE SLES15: cobbler / image-sync-formula / inter-server-sync / jose4j / etc (SUSE-SU-2024:1507-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2024:1507-1 advisory. cobbler: - Provide option to use pre-built GRUB bootloader - Prevent parallel executions of cobbler sync actions bsc1218764 image-sync-formula: - Updat...
CVE-2023-51775
CVE-2023-51775 affects the jose4j Java library, prior to 0.9.4. The issue allows an attacker to cause a denial of service (high CPU usage) by sending a large PBES2 Count (p2c) value. The IBM bulletin confirms the CVE and describes the vulnerability as a resource exhaustion in jose4j. Remediation ...