13 matches found
EulerOS 2.0 SP13 : libssh (EulerOS-SA-2025-2299)
According to the versions of the libssh package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw...
CVE-2025-59339
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. Session-recording ttyrec files, may be handled by the provided osh-encrypt-rsync script that is a helper to rotate, encrypt, sign, copy, and optionally move them to a remote storage periodically, i...
CVE-2025-59339
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. Session-recording ttyrec files, may be handled by the provided osh-encrypt-rsync script that is a helper to rotate, encrypt, sign, copy, and optionally move them to a remote storage periodically, i...
CVE-2025-59339 The Bastion ttyrec files are not signed after encryption by the osh-encrypt-rsync script
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. Session-recording ttyrec files, may be handled by the provided osh-encrypt-rsync script that is a helper to rotate, encrypt, sign, copy, and optionally move them to a remote storage periodically, i...
CVE-2025-59339 The Bastion ttyrec files are not signed after encryption by the osh-encrypt-rsync script
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. Session-recording ttyrec files, may be handled by the provided osh-encrypt-rsync script that is a helper to rotate, encrypt, sign, copy, and optionally move them to a remote storage periodically, i...
PT-2025-38246
Name of the Vulnerable Software and Affected Versions: The Bastion affected versions not specified Description: The Bastion provides authentication, authorization, traceability, and auditability for SSH accesses. Session-recording ttyrec files are handled by the provided osh-encrypt-rsync script,...
Linux Distros Unpatched Vulnerability : CVE-2025-4878
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw can be...
AZL-65643 CVE-2025-4878 affecting package libssh for versions less than 0.10.6-3
A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw can be triggered if the file specified by the filename doesn't exist and may lead to possible signing failures or heap corruption...
CVE-2025-4878
A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw can be triggered if the file specified by the filename doesn't exist and may lead to possible signing failures or heap corruption...
CVE-2025-4878
CVE-2025-4878 affects libssh. The vulnerability is due to an uninitialized variable in privatekey_from_file() that can be triggered when the filename does not exist, potentially causing signing failures, use-after-free, or memory corruption. Public sources in connected documents confirm this issu...
SUSE CVE-2025-4878
A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw can be triggered if the file specified by the filename doesn't exist and may lead to possible signing failures or heap corruption...
Could not sign CSR Caused by: java.io.IOException: Cannot obtain certificate from certsrv authority: 401 Unauthorized
After configuring Client Certificate Authentication for XMS but you cannot request a certificate from the Issuing Server java.lang.RuntimeException: Could not create mobileconfig PA Credentials at com.sparus.nps.iphone.mobileconfig.MobileConfig.toPListMobileConfig.java:574 at...
CVE-2005-2023
The sendpinentryenvironment function in asshelp.c in gpg2 on SUSE Linux 9.3 does not properly handle certain options, which can prevent pinentry from being found and causes S/MIME signing to fail...