7 matches found
Important: containerd
Issue Overview: An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state a...
n8n-MCP 安全漏洞
n8n-MCP is a model context protocol server developed by Romuald Członkowski, an individual developer. Versions of n8n-MCP prior to 2.51.3 contained security vulnerabilities. These vulnerabilities stemmed from the fact that the workflow telemetry cleaner might retain fragments of URL shape node...
CVE-2026-39829
The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public...
ALPINE-CVE-2024-4603
Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions EVPPKEYparamcheck or EVPPKEYpubliccheck to check a DSA public key or DSA parameters may experience long delays. Where the key or parameters that are being checked...
The vulnerability of the _gcry_ecc_ecdsa_sign function in the Libgcrypt cryptographic library allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the gcryeccecdsasign function “cipher/ecc-ecdsa.c” in the cryptographic library Libgcrypt relates to the possibility of determining plausible values for basic parameters of a next digital signature by iterating through cache values and evaluating computational costs. This cou...
CVE-2018-6459
CVE-2018-6459 – strongSwan DoS in RSASSA-PSS parsing affected software/versions: strongSwan 5.6.1 (RSA-PSS signature parsing code in libstrongswan/credentials/keys/signature_params.c). root cause: the rsa_pss_params_parse function mishandles a missing mask generation function (MGF) parameter in R...
Подмена подписанного документа в ECDSA
Серьёзная ошибка в ECDSA. В матаппарате новейшего американского стандарта ЭЦП известного как ECDSA DSA для эллиптических кривых 1 cтр. 25-30 существует серьёзная ошибка позволяющая выбрать такое значение секретного ключа, чтобы получить одинаковые подписи для разных документов. Это позволяет...