Lucene search
K

221 matches found

OSV
OSV
added 2026/02/14 4:27 p.m.7 views

CVE-2025-71224 wifi: mac80211: ocb: skip rx_no_sta when interface is not joined

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: ocb: skip rxnosta when interface is not joined ieee80211ocbrxnosta assumes a valid channel context, which is only present after JOINOCB. RX may run before JOINOCB is executed, in which case the OCB interface is no...

5.2AI score0.00173EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:27 p.m.5 views

CVE-2025-71224

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: ocb: skip rxnosta when interface is not joined ieee80211ocbrxnosta assumes a valid channel context, which is only present after JOINOCB. RX may run before JOINOCB is executed, in which case the OCB interface is no...

5.2AI score0.00173EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.28 views

CVE-2025-71224 wifi: mac80211: ocb: skip rx_no_sta when interface is not joined

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: ocb: skip rxnosta when interface is not joined ieee80211ocbrxnosta assumes a valid channel context, which is only present after JOINOCB. RX may run before JOINOCB is executed, in which case the OCB interface is no...

0.00173EPSS
Exploits0References7
CVE
CVE
added 2026/02/14 4:27 p.m.20 views

CVE-2025-71224

The CVE-2025-71224 issue affects the Linux kernel’s wifi/mac80211-OCB path. The function ieee80211_ocb_rx_no_sta() assumes a valid channel context present only after JOIN_OCB. If RX executes before JOIN_OCB, the OCB interface is not yet operational, triggering warnings in the RX path. The fix is ...

5.2AI score0.00173EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/02/14 4:27 p.m.6 views

CVE-2025-71224

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: ocb: skip rxnosta when interface is not joined ieee80211ocbrxnosta assumes a valid channel context, which is only present after JOINOCB. RX may run before JOINOCB is executed, in which case the OCB interface is no...

5.1AI score0.00173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Missing Cryptographic Step (CVE-2025-69418)

Issue summary: When using the low-level OCB API directly with AES-NI orother hardware-accelerated code paths, inputs whose length is not a multipleof 16 bytes can leave the final partial block unencrypted and unauthenticated.Impact summary: The trailing 1-15 bytes of a message may be exposed...

4CVSS5.6AI score0.00115EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.5 views

SUSE SLES15: libopenssl-1_1-devel / libopenssl-1_1-devel-32bit / libopenssl1_1 / etc (SUSE-SU-2026:0360-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0360-1 advisory. - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in...

7.5CVSS6.7AI score0.00844EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.5 views

SUSE SLES12: libopenssl-1_1-devel / libopenssl-1_1-devel-32bit / libopenssl1_1 / etc (SUSE-SU-2026:0358-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0358-1 advisory. - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyrespon...

7.5CVSS6.8AI score0.00844EPSS
Exploits1References22
SUSE Linux
SUSE Linux
added 2026/02/02 9:55 a.m.6 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex function...

6.9CVSS5.4AI score0.00844EPSS
Exploits1References28
OSV
OSV
added 2026/02/02 9:55 a.m.2 views

SUSE-SU-2026:0359-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. - CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex functi...

7.5CVSS5.8AI score0.00844EPSS
Exploits1References15
OSV
OSV
added 2026/02/02 9:54 a.m.2 views

SUSE-SU-2026:0358-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. - CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex functi...

7.5CVSS6.7AI score0.00844EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

SUSE SLES15: libopenssl-1_1-devel / libopenssl-1_1-devel-32bit / libopenssl1_1 / etc (SUSE-SU-2026:0346-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0346-1 advisory. - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE...

7.5CVSS6.8AI score0.00844EPSS
Exploits1References22
SUSE Linux
SUSE Linux
added 2026/01/30 9:1 a.m.6 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex function...

6.9CVSS5.9AI score0.00844EPSS
Exploits1References28
OSV
OSV
added 2026/01/30 9:1 a.m.2 views

SUSE-SU-2026:0346-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. - CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex functi...

7.5CVSS5.9AI score0.00844EPSS
Exploits1References15
SUSE CVE
SUSE CVE
added 2026/01/30 12:27 a.m.5 views

SUSE CVE-2025-69418

Issue summary: When using the low-level OCB API directly with AES-NI orother hardware-accelerated code paths, inputs whose length is not a multipleof 16 bytes can leave the final partial block unencrypted and unauthenticated.Impact summary: The trailing 1-15 bytes of a message may be exposed...

5.3CVSS5.7AI score0.00115EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2026/01/29 6:34 p.m.8 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex function...

6.9CVSS5.9AI score0.00844EPSS
Exploits1References28
SUSE Linux
SUSE Linux
added 2026/01/28 5:13 p.m.7 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex function...

6.9CVSS5.9AI score0.00844EPSS
Exploits1References28
OSV
OSV
added 2026/01/28 5:13 p.m.2 views

SUSE-SU-2026:0331-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-22795: Missing ASN1TYPE validation in PKCS12 parsing bsc1256839. - CVE-2025-69420: Missing ASN1TYPE validation in TSRESPverifyresponse function bsc1256837. - CVE-2025-69421: NULL Pointer Dereference in PKCS12itemdecryptd2iex functi...

7.5CVSS7.1AI score0.00844EPSS
Exploits1References15
SUSE Linux
SUSE Linux
added 2026/01/28 9:37 a.m.5 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing bsc1256830. CVE-2025-68160: Heap out-of-bounds write in BIOflinebuffer on short writes bsc1256834. CVE-2025-69418: Unauthenticated/unencrypted trailing bytes with low-level...

9.8CVSS6AI score0.47621EPSS
Exploits7References32
Tenable Nessus
Tenable Nessus
added 2026/01/28 12:0 a.m.7 views

AlmaLinux 10 : openssl (ALSA-2026:1472)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:1472 advisory. openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS12 file CVE-2025-11187 openssl: OpenSSL: Remote code execution or...

9.8CVSS7.4AI score0.47621EPSS
Exploits7References14
Rows per page
Query Builder