Lucene search
+L

6 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in nss

NSS has demonstrated timing differences during the execution of DSA signatures, which can be exploited and may eventually lead to the leakage of private keys. This vulnerability affects Thunderbird versions 68.9.0, Firefox versions 77, and Firefox ESR versions 68.9...

4.4CVSS6.7AI score0.00651EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 1:52 p.m.15 views

CLSA-2024-1732197150 Fix of 20 CVEs

Update to 8u432-ga fixing a number of CVEs - CVE-2024-20918: missing array range check in C1 compiler leads to out-of-bounds access - CVE-2024-20919: unverified bytecode execution because of the flaw in JVM class file verifier - CVE-2024-20921: optimization issue of loop range check in IfNode and...

7.4CVSS7.2AI score0.01361EPSS
Exploits0References1
OSV
OSV
added 2024/06/07 1:15 a.m.7 views

AZL-51921 CVE-2022-4968 affecting package netplan for versions less than 1.0.1-1

netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected...

6.5CVSS5.8AI score0.00264EPSS
Exploits1References1
OSV
OSV
added 2022/03/02 11:15 p.m.4 views

UBUNTU-CVE-2021-4076

A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys...

7.5CVSS7.1AI score0.0154EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/12/22 5:26 a.m.22 views

H2O use-after-free vulnerability

Overview H2O is an open source web server software. H2O contains a use-after-free vulnerability CWE-416 due to a flaw in the process of upgrading from HTTP/1 to HTTP/2. Kazuho Oku reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and Kazuho Oku coordinated...

9.1CVSS6.9AI score0.02184EPSS
Exploits0References5
OSV
OSV
added 2015/12/03 12:0 a.m.6 views

UBUNTU-CVE-2015-3193

The Montgomery squaring implementation in crypto/bn/asm/x8664-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x8664 platform, as used by the BNmodexp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key...

7.5CVSS6.8AI score0.25137EPSS
Exploits1References4
Rows per page
Query Builder