thunderbird: Potential disclosure of plaintext in OpenPGP encrypted message

The Mozilla Foundation Security Advisory describes this flaw as: Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext...

Moderate: Red Hat Bug Fix Advisory: nss bug fix and enhancement update

An update for nss is now available for Red Hat Enterprise Linux 9.2 Extended Update Support and Red Hat Enterprise Linux 9. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Bug Fixes and...

MGASA-2022-0255 Updated openssl packages fix security vulnerability

AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption...

CVE-2018-16869

A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw extract plaintext or in some cases...