Lucene search
K

4 matches found

Debian
Debian
added 2024/09/03 6:58 p.m.5 views

[SECURITY] [DSA 5764-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5764-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 03, 2024 https://www.debian.org/security/faq -...

7.5CVSS6.5AI score0.66594EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.3 views

The vulnerability of the PA-RISC CRYPTO_memcmp function in the OpenSSL library, which allows attackers to create fake messages

The vulnerability of the PA-RISC CRYPTOmemcmp function in the OpenSSL library is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to create fake messages that will be treated as authentic...

5.9CVSS6.7AI score0.08606EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2016/02/15 2:59 a.m.39 views

Design/Logic Flaw

The DHcheckpubkey function in crypto/dh/dhcheck.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman DH key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose...

2.6CVSS7AI score0.83645EPSS
Exploits1References24Affected Software1
Cvelist
Cvelist
added 2000/07/12 4:0 a.m.29 views

CVE-2000-0535

OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken...

6.4AI score0.01438EPSS
Exploits0References2
Rows per page
Query Builder