EUVD-2011-0947

Malware in sbrugna...

GHSA-QC2Q-QHF3-235M get-jwks: poisoned JWKS cache allows post-fetch issuer validation bypass

Summary A vulnerability in get-jwks can lead to cache poisoning in the JWKS key-fetching mechanism. Details When the iss issuer claim is validated only after keys are retrieved from the cache, it is possible for cached keys from an unexpected issuer to be reused, resulting in a bypass of issuer...

Key Caching behavior in the DynamoDB Encryption Client.

Impact This advisory concerns users of MostRecentProvider in the DynamoDB Encryption Client with a key provider like AWS Key Management Service that allows for permissions on keys to be modified. When key usage permissions were changed at the key provider, time-based key reauthorization logic in...

Key Caching behavior in the DynamoDB Encryption Client.

Impact This advisory concerns users of MostRecentProvider in the DynamoDB Encryption Client with a key provider like AWS Key Management Service that allows for permissions on keys to be modified. When key usage permissions were changed at the key provider, time-based key reauthorization logic in...

GHSA-W736-HF9P-QQH3 Key Caching behavior in the DynamoDB Encryption Client.

Impact This advisory concerns users of MostRecentProvider in the DynamoDB Encryption Client with a key provider like AWS Key Management Service that allows for permissions on keys to be modified. When key usage permissions were changed at the key provider, time-based key reauthorization logic in...

libcacard bug fix and enhancement update

An update is available for libcacard. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libcacard packages contain the Common Access Card CAC emulation library...

ALBA-2019:3785 libcacard bug fix and enhancement update

The libcacard packages contain the Common Access Card CAC emulation library. This update fixes the following bug: Backport the patch removing key caching to unbreak libcacard for CI usage BZ1750477. Users of libcacard are advised to upgrade to these updated packages, which fix this bug...

libcacard bug fix and enhancement update

The libcacard packages contain the Common Access Card CAC emulation library. This update fixes the following bug: Backport the patch removing key caching to unbreak libcacard for CI usage BZ1750477. Users of libcacard are advised to upgrade to these updated packages, which fix this bug...

Ansible Man-in-the-Middle Attack Vulnerability

Ansible is a computer system configuration manager from Ansible, Inc. that can be used to publish, manage and orchestrate computer systems. A security vulnerability exists in Ansible versions prior to 1.2.1 that stems from the program failing to cache SSH host keys. A remote attacker can exploit...

CVE-2013-2233

Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys...

CVE-2004-2681

PeerSec MatrixSSL before 1.1 caches session keys for an indefinitely long time, which might make it easier for remote attackers to hijack a session...