17 matches found
JLSEC-2026-259 Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use...
Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. A copy & paste...
DEBIAN-CVE-2025-65499
Array index error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetexdataX509STORECTXidx to return -1...
EUVD-2025-16129
Malicious code in bioql PyPI...
EUVD-2025-16128
Malicious code in bioql PyPI...
OpenSSL -- Inverted security logic in x509 app
The OpenSSL project reports: The x509 application adds trusted use instead of rejected use low...
OpenSSL x509 Vulnerability (20250522) - Linux
OpenSSL is prone to a vulnerability in the x509 application. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl";...
FreeBSD : OpenSSL -- Inverted security logic in x509 app (5baa64d6-37ee-11f0-a116-8447094a420f)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 5baa64d6-37ee-11f0-a116-8447094a420f advisory. The OpenSSL project reports: The x509 application adds trusted use instead of rejected use low Tenable...
CVE-2025-4575
Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. A copy & paste...
CVE-2025-4575 The x509 application adds trusted use instead of rejected use
Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. A copy & paste...
CVE-2025-4575
Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. A copy & paste...
OpenSSL Security Advisory 20250522
OpenSSL Security Advisory 20250522 - Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate...
Improper Certificate Validation
Overview Affected versions of this package are vulnerable to Improper Certificate Validation through incorrect assignment of trusted use instead of a rejected use for a certificate when using the -addreject option with the openssl x509 application. If a user intends to make a trusted certificate...
Security update for SUSE Manager Salt Bundle
This update fixes the following issues: venv-salt-minion: Security fixes on Python 3.11 interpreter: CVE-2024-7592: Fixed quadratic complexity in parsing -quoted cookie values with backslashes bsc1229873, bsc1230059 CVE-2024-8088: Prevent malformed payload to cause infinite loops in zipfile.Path...
USN-6634-1 dotnet6, dotnet7, dotnet8 vulnerabilities
Brennan Conroy discovered that .NET with SignalR did not properly handle malicious clients. An attacker could possibly use this issue to cause a denial of service. CVE-2024-21386 Bahaa Naamneh discovered that .NET with OpenSSL support did not properly parse X509 certificates. An attacker could...
SUSE: Security Advisory (SUSE-SU-2022:2824-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2824-1 Security update for compat-openssl098
This update for compat-openssl098 fixes the following issues: - Fixed a regression caused by unknown option passed to 'openssl x509' from crehash...
php: memory corruption in openssl_x509_parse()
The asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service memory...