Lucene search
K

6 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Ceph

A key length flaw was discovered in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed during the encryption algorithm process, resulting in the creation of a non-random key. Such a key is weaker and can be exploited to compromise the confidentiality...

6.5CVSS6.8AI score0.00436EPSS
Exploits0References2
OSV
OSV
added 2023/05/09 9:51 p.m.9 views

USN-6063-1 ceph vulnerabilities

Mark Kirkwood discovered that Ceph incorrectly handled certain key lengths. An attacker could possibly use this issue to create non-random encryption keys. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2021-3979 It was discovered that Ceph incorrectly handled the volumes...

9.1CVSS6.9AI score0.00935EPSS
Exploits1References5
OSV
OSV
added 2022/08/25 8:15 p.m.2 views

DEBIAN-CVE-2021-3979

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks...

6.5CVSS6.6AI score0.00436EPSS
Exploits0References1
OSV
OSV
added 2022/08/25 8:15 p.m.5 views

UBUNTU-CVE-2021-3979

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks...

6.5CVSS6.8AI score0.00436EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/04/04 10:23 a.m.4 views

ceph: Ceph volume does not honour osd_dmcrypt_key_size

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks...

6.5CVSS5.8AI score0.00436EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/07/06 12:0 a.m.37 views

SUSE SLED11 / SLES11 Security Update : ntp (SUSE-SU-2015:1173-1)

ntp was updated to fix two security issues : CVE-2015-1799: ntpd authentication did not protect symmetric associations against DoS attacks bsc924202 CVE-2015-3405: ntp-keygen may generate non-random symmetric keys on big-endian systems bsc928321 Note that Tenable Network Security has extracted th...

7.5CVSS6.3AI score0.05292EPSS
Exploits0References9
Rows per page
Query Builder