95 matches found
February 15, 2022—KB5010415 (OS Builds 19042.1566, 19043.1566, and 19044.1566) Preview
None None...
CVE-2021-23992
Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user ID, or by adding another user ID. If Thunderbird imports and accepts the crafted key, the Thunderbi...
PT-2021-10906 · Union Pay · Union Pay
Name of the Vulnerable Software and Affected Versions: Union Pay versions up to 1.2.0 Description: The issue allows attackers to shop for free in merchants' websites and mobile apps via a crafted authentication code MAC generated based on a secret key which is NULL. This is due to an improper...
OPENSUSE-SU-2020:2188-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: - Update to version jdk8u275 icedtea 3.17.1 JDK-8214440, bsc1179441: Fix StartTLS functionality that was broken in openjdk272. bsc1179441 JDK-8223940: Private key not supported by chosen signature algorithm JDK-8236512: PKCS11 Connectio...
OPENSUSE-SU-2020:2170-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: - Update to version jdk8u275 icedtea 3.17.1 JDK-8214440, bsc1179441: Fix StartTLS functionality that was broken in openjdk272. bsc1179441 JDK-8223940: Private key not supported by chosen signature algorithm JDK-8236512: PKCS11 Connectio...
Security update for bind (moderate)
openSUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2020:1701-1 Rating: moderate References: 1100369 1109160 1118367 1118368 1128220 1156205 1157051 1161168 1170667 1170713 1171313 1171740 1172958 1173307 1173311 1173983 1175443 1176092 1176674 906079 Cross-References:...
SUSE-SU-2020:2456-1 Security update for php7
This update for php7 fixes the following issues: - CVE-2020-7068: Use of freed hash key in the pharparsezipfile function bsc1175223...
SUSE-SU-2020:2403-1 Security update for php7
This update for php7 fixes the following issues: - fix CVE-2020-7068 bsc1175223: Use of freed hash key in the pharparsezipfile function...
SUSE-SU-2019:3191-1 Security update for cloud-init
This update for cloud-init fixes the following issues: Security issue fixed: - CVE-2019-0816: Fixed the unnecessary extra ssh keys that were added to authorizedkeys bsc1129124. Non-security issues fixed: - Add cloud-init-renderer-detect.patch bsc1154092, bsc1142988 + Short curcuit the conditional...
SUSE-SU-2019:3097-1 Security update for cloud-init
This update for cloud-init to version 19.2 fixes the following issues: Security issue fixed: - CVE-2019-0816: Fixed the unnecessary extra ssh keys that were added to authorizedkeys bsc1129124. Non-security issues fixed: - Short circuit the conditional for identifying the sysconfig renderer...
OPENSUSE-SU-2017:3419-1 Security update for enigmail
This update for enigmail to version 1.9.9 fixes the following issues boo1073858: Enigmail could be coerced to use a malicious PGP public key with a corresponding secret key controlled by an attacker Enigmail could have replayed encrypted content in partially encrypted e-mails, allowing a plaintex...
Hardcoded credentials
A Use of Hard-Coded Cryptographic Key issue was discovered in MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The device utilizes hard-coded private cryptographic keys that may allow an attacker to decrypt traffic from any other source...
DEBIAN-CVE-2017-5836
The plistfreedata function in plist.c in libplist allows attackers to cause a denial of service crash via vectors involving an integer node that is treated as a PLISTKEY and then triggers an invalid free...
SUSE-RU-2015:1411-1 Recommended update for compat-openssl098
This update of compat-openssl098 fixes a regression problem when loading DSA keys from disk caused by the security fix for CVE-2015-0287. bsc937492...
nss security update
CentOS Errata and Security Advisory CESA-2011:1444 Merged security bulletin from advisories: https://lists.centos.org/pipermail/centos-announce/2011-November/080319.html https://lists.centos.org/pipermail/centos-announce/2011-November/080320.html...