4 matches found
libcrux incorrectly calculates on aarch64
On platforms without the core::arch::aarch64::vxarqu64 intrinsic, an unverified fallback in libcrux-intrinsics v0.0.3 passed incorrect arguments and produced wrong results. This corrupted SHA-3 digests and caused libcrux-ml-kem and libcrux-ml-dsa to sample incorrectly, yielding incorrect shared...
openSUSE Security Update : shim (openSUSE-2021-598)
This update for shim fixes the following issues : - Updated openSUSE x86 signature - Avoid the error message during linux system boot boo1184454 - Prevent the build id being added to the binary. That can cause issues with the signature Update to 15.4 boo1182057 + Rename the SBAT variable and fix...
MGASA-2017-0041 Updated java-1.8.0-openjdk packages fix security vulnerabilities
It was discovered that the RMI registry and DCG implementations in the RMI component of OpenJDK performed deserialization of untrusted inputs. A remote attacker could possibly use this flaw to execute arbitrary code with the privileges of RMI registry or a Java RMI application CVE-2017-3241. This...
CVE-2009-3602
Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses...