101 matches found
Security update for gnutls (moderate)
openSUSE Security Update: Security update for gnutls Announcement ID: openSUSE-SU-2020:1743-1 Rating: moderate References: 1176086 1176181 1176671 Cross-References: CVE-2020-24659 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has two fixes is now available...
openSUSE Security Update : gnutls (openSUSE-2020-1724)
This update for gnutls fixes the following issues : - Fix heap buffer overflow in handshake with norenegotiation alert sent CVE-2020-24659 bsc1176181 - FIPS: Implement ECDH requirements from SP800-56Arev3 bsc1176086 - FIPS: Use 2048 bit prime in DH selftest bsc1176086 - FIPS: Add TLS KDF selftest...
Security update for gnutls (moderate)
openSUSE Security Update: Security update for gnutls Announcement ID: openSUSE-SU-2020:1724-1 Rating: moderate References: 1176086 1176181 1176671 Cross-References: CVE-2020-24659 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
openSUSE: Security Advisory for gnutls (openSUSE-SU-2020:1724-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:1724-1 Security update for gnutls
This update for gnutls fixes the following issues: - Fix heap buffer overflow in handshake with norenegotiation alert sent CVE-2020-24659 bsc1176181 - FIPS: Implement ECDH requirements from SP800-56Arev3 bsc1176086 - FIPS: Use 2048 bit prime in DH selftest bsc1176086 - FIPS: Add TLS KDF selftest...
SUSE-SU-2020:2988-1 Security update for gnutls
This update for gnutls fixes the following issues: - Fix heap buffer overflow in handshake with norenegotiation alert sent CVE-2020-24659 bsc1176181 - FIPS: Implement ECDH requirements from SP800-56Arev3 bsc1176086 - FIPS: Use 2048 bit prime in DH selftest bsc1176086 - FIPS: Add TLS KDF selftest...
SUSE-SU-2020:2864-1 Security update for gnutls
This update for gnutls fixes the following issues: - Fix heap buffer overflow in handshake with norenegotiation alert sent CVE-2020-24659 bsc1176181 - FIPS: Implement ECDH requirements from SP800-56Arev3 bsc1176086 - FIPS: Use 2048 bit prime in DH selftest bsc1176086 - FIPS: Add TLS KDF selftest...
Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update
An update for nss, nss-softokn, nss-util, and nspr is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...
openSUSE Security Update : openssl-1_1 (openSUSE-2020-62)
This update for openssl-11 fixes the following issues : Security issue fixed : - CVE-2019-1551: Fixed an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli bsc1158809. Various FIPS related improvements were done : - FIPS: Backport SSH KDF to openssl...
SUSE SLED15 / SLES15 Security Update : openssl-1_1 (SUSE-SU-2020:0069-1)
This update for openssl-11 fixes the following issues : Security issue fixed : CVE-2019-1551: Fixed an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli bsc1158809. Various FIPS related improvements were done: FIPS: Backport SSH KDF to openssl...
SUSE SLED15 / SLES15 Security Update : openssl-1_1 (SUSE-SU-2020:0002-1)
This update for openssl-11 fixes the following issues : Security issue fixed : CVE-2019-1551: Fixed an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli bsc1158809. Various FIPS related improvements were done: FIPS: Backport SSH KDF to openssl...
CVE-2019-19766
The Bitwarden server through 1.32.0 has a potentially unwanted KDF...
CVE-2019-19766
The Bitwarden server through 1.32.0 has a potentially unwanted KDF...
Code injection
The Bitwarden server through 1.32.0 has a potentially unwanted KDF...
CVE-2019-19766
The Bitwarden server through 1.32.0 has a potentially unwanted KDF...
openssl security update
1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c release 1.1.1b-6 - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode 1.1.1b-5 - Fix small regressions related to the reba...
openssl security, bug fix, and enhancement update
1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c release 1.1.1b-6 - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode 1.1.1b-5 - Fix small regressions related to the reba...
Moderate: Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update
An update for nss and nspr is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
SUSE SLED12 / SLES12 Security Update : openssh (SUSE-SU-2019:1524-1)
This update for openssh fixes the following issues : Security vulnerabilities addressed : CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816. CVE-2019-611...
Denial Of Service (DoS)
krb5 is vulnerable to denial of service DoS attacks. The vulnerability exists as the pkinitserverreturnpadata function in plugins/preauth/pkinit/pkinitsrv.c in the PKINIT implementation in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.10.4 attempts to find an agility KDF...