Lucene search
+L

224 matches found

nessus
nessus
added 2025/06/27 12:0 a.m.3 views

SUSE SLED15: libekmfweb1 / libekmfweb1-devel / libkmipclient1 / osasnmpd / etc (SUSE-SU-2025:02017-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02017-1 advisory. Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate...

3.7CVSS5.8AI score0.00486EPSS
Exploits0References4
suse
suse
added 2025/06/19 7:14 a.m.2 views

Security update for s390-tools

This update for s390-tools fixes the following issues: Security issues fixed: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: Added the new IBM z17 9175 processor type. Patch Instructions: To install this SUSE update use the SUSE...

6.3CVSS7.2AI score0.00486EPSS
Exploits0References6
osv
osv
added 2025/06/19 7:14 a.m.4 views

SUSE-SU-2025:02017-1 Security update for s390-tools

This update for s390-tools fixes the following issues: Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: - Added the new IBM z17 9175 processor type...

3.7CVSS4.6AI score0.00486EPSS
Exploits0References3
nessus
nessus
added 2025/06/14 12:0 a.m.4 views

Fedora 43 : rust-openssl / rust-openssl-sys (2025-e385cbedb5)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-e385cbedb5 advisory. - Update the openssl crate to version 0.10.72. - Update the openssl-sys crate to version 0.9.107. This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 a...

3.7CVSS5.2AI score0.00486EPSS
Exploits0References2
nessus
nessus
added 2025/06/14 12:0 a.m.5 views

Fedora 42 : rust-openssl / rust-openssl-sys (2025-c263d3ebd9)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-c263d3ebd9 advisory. - Update the openssl crate to version 0.10.72. - Update the openssl-sys crate to version 0.9.107. This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 a...

3.7CVSS5.2AI score0.00486EPSS
Exploits0References2
suse
suse
added 2025/06/13 11:36 a.m.3 views

Security update for python-cryptography

This update for python-cryptography fixes the following issues: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

6.3CVSS7.3AI score0.00486EPSS
Exploits0References4
osv
osv
added 2025/06/13 11:8 a.m.4 views

SUSE-SU-2025:20407-1 Security update for python-cryptography

This update for python-cryptography fixes the following issues: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631...

3.7CVSS5.8AI score0.00486EPSS
Exploits0References3
osv
osv
added 2025/06/03 1:15 p.m.5 views

SUSE-SU-2025:01807-1 Security update for 389-ds

This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...

3.7CVSS5.8AI score0.00486EPSS
Exploits0References5
osv
osv
added 2025/06/03 1:13 p.m.3 views

SUSE-SU-2025:01806-1 Security update for 389-ds

This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...

3.7CVSS5.8AI score0.00486EPSS
Exploits0References5
nessus
nessus
added 2025/05/27 12:0 a.m.6 views

RHEL 9 : keylime-agent-rust (RHSA-2025:7313)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7313 advisory. Rust agent for Keylime Security Fixes: rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 For more details about the...

6.3CVSS5.4AI score0.0065EPSS
Exploits0References6
nessus
nessus
added 2025/05/27 12:0 a.m.5 views

RHEL 9 : python3.12-cryptography (RHSA-2025:7317)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7317 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

6.3CVSS5.4AI score0.0065EPSS
Exploits0References6
openvas
openvas
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2025-a13867ecbc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.2AI score0.00486EPSS
Exploits0References3
openvas
openvas
added 2025/05/26 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-c263d3ebd9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.2AI score0.00486EPSS
Exploits0References3
suse
suse
added 2025/05/23 7:59 a.m.2 views

Security update for s390-tools

This update for s390-tools fixes the following issues: Revendored vendor.tar.zst CVE-2025-3416: Fixed use-after-free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242622 Added the new IBM z17 9175 processor type The package is built with the new 4096bit RSA secure boot signing key. Pat...

6.3CVSS7.2AI score0.00486EPSS
Exploits0References4
osv
osv
added 2025/05/23 7:48 a.m.3 views

SUSE-SU-2025:20352-1 Security update for s390-tools

This update for s390-tools fixes the following issues: - CVE-2025-3416: s390-tools: openssl: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242622 - Amended the .spec file - Updated the 'service' file - Removed the obsolete file 'cargoconfig' - Updated 'cputype' and...

3.7CVSS5.8AI score0.00486EPSS
Exploits0References3
suse
suse
added 2025/05/16 1:44 p.m.2 views

Security update for cargo-c

This update for cargo-c fixes the following issues: CVE-2025-3416: use-after-free in Md::fetch and Cipher::fetch of rust-openssl crate bsc1242675. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.3CVSS4.7AI score0.00486EPSS
Exploits0References4
osv
osv
added 2025/05/16 1:44 p.m.2 views

SUSE-SU-2025:1570-1 Security update for cargo-c

This update for cargo-c fixes the following issues: - CVE-2025-3416: use-after-free in Md::fetch and Cipher::fetch of rust-openssl crate bsc1242675...

3.7CVSS5.7AI score0.00486EPSS
Exploits0References3
osv
osv
added 2025/05/15 12:51 p.m.2 views

SUSE-SU-2025:1560-1 Security update for rustup

This update for rustup fixes the following issues: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242617...

3.7CVSS5.6AI score0.00486EPSS
Exploits0References3
redhat
redhat
added 2025/05/13 8:49 a.m.10 views

rust-openssl: rust openssl ssl::select_next_proto use after free

A flaw was found in the rust-openssl package. In certain versions, ssl::selectnextproto can return a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. In situations where the sever buffer's lifetime is shorter than the client buffer's, this can cau...

6.3CVSS6AI score0.0065EPSS
Exploits0References7
redhat
redhat
added 2025/05/13 8:35 a.m.3 views

rust-openssl: rust openssl ssl::select_next_proto use after free

A flaw was found in the rust-openssl package. In certain versions, ssl::selectnextproto can return a slice pointing into the server argument's buffer but with a lifetime bound to the client argument. In situations where the sever buffer's lifetime is shorter than the client buffer's, this can cau...

6.3CVSS6AI score0.0065EPSS
Exploits0References7
Rows per page
Query Builder