EUVD-2020-0848

Malware in sbrugna...

CVE-2022-2097 AES OCB fails to encrypt some bytes

AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4592-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4592-1 advisory. Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type- confusion error. A physically proximate remote...

Security feature bypass

A security issue was found in bittorrent-dht before 5.1.3 that allows someone to send a specific series of messages to a listening peer and get it to reveal internal memory...

CVE-2016-10519

The CVE-2016-10519 entry describes a vulnerability in bittorrent-dht before 5.1.3 where an attacker can send a crafted sequence of messages to a listening peer to cause disclosure of internal memory. Affected component: bittorrent-dht (Node.js implementation). Root cause: insecure handling of mes...

OpenSSL Fixes TLS Vulnerability

The maintainers of the OpenSSL library, one of the more widely deployed cryptographic libraries on the Web, have fixed a serious vulnerability that could have resulted in the revelation of 64 KB of memory to any client or server that was connected. The details of the vulnerability, fixed in versi...