14 matches found
EUVD-2025-31003
Malicious code in bioql PyPI...
CVE-2025-21481
Memory corruption while performing private key encryption in trusted application...
CVE-2025-21481
Memory corruption while performing private key encryption in trusted application...
CVE-2025-21481
CVE-2025-21481 is linked to memory corruption during private key encryption in a trusted application, specifically within the Adreno GPU DRM driver. The PT-2025-23797 entry describes a use-after-free condition in the Direct Rendering Manager (DRM) Driver of the Adreno GPU, affecting unspecified A...
CVE-2025-21481 Buffer Copy Without Checking Size of Input in HLOS
Memory corruption while performing private key encryption in trusted application...
CVE-2025-21481 Buffer Copy Without Checking Size of Input in HLOS
Memory corruption while performing private key encryption in trusted application...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a series of chipsets from Qualcomm, Inc. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when performing private key encryption...
CVE-2025-48862
The CVE affects ctrlX OS (Bosch) where ambiguous wording in the web interface of the setup/backup mechanism could mislead users into thinking the backup is encrypted when a password is set. In reality, only the private key in the backup (if present) is encrypted; the backup file itself remains un...
CVE-2025-48862
Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...
PT-2025-33140 · Ctrlx Os · Ctrlx Os
Name of the Vulnerable Software and Affected Versions: ctrlX OS affected versions not specified Description: Ambiguous wording in the web interface of the setup mechanism could lead a user to believe that the backup file is encrypted when a password is set. However, only the private key – if...
The Hardness of Learning Quantum Circuits and Its Cryptographic Applications
We show that concrete hardness assumptions about learning or cloning the output state of a random quantum circuit can be used as the foundation for secure quantum cryptography. In particular, under these assumptions we construct secure one-way state generators OWSGs, digital signature schemes,...
CVE-2024-23444 Elasticsearch elasticsearch-certutil csr fails to encrypt private key
It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command...
SSH1 may generate weak passphrase when using Secure RPC
Overview The secure-RPC feature of the SSH1 client in Solaris sometimes encrypts the SSH private key file with a weak passphrase, which can be determined by an attacker and used to recover the SSH private keys. Other versions of the SSH client running on non-Solaris platforms are not affected by...
GNU Privacy Guard 1.0.x - Format String
GNU Privacy Guard 1.0.x - Format String source: https://www.securityfocus.com/bid/2797/info GnuPG is a popular open source public/private key encryption system. It is possible for attackers to create an encrypted document that will exploit a format string vulnerability in the GnuPG client when th...