Lucene search
K

169 matches found

Mageia
Mageia
added 2020/01/05 3:37 p.m.48 views

Updated openssl packages fix security vulnerability

Updated compat-openssl10 and openssl packages fix security vulnerability: There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and...

5.3CVSS2.2AI score0.14298EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/01/02 12:0 a.m.35 views

EulerOS 2.0 SP8 : openssl (EulerOS-SA-2020-1021)

According to the version of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow was found in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. As per upstream: No EC...

5.3CVSS6.9AI score0.14298EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/30 12:0 a.m.36 views

Debian DSA-4594-1 : openssl1.0 - security update

Guido Vranken discovered an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4594. The text itself is copyrig...

5.3CVSS6.9AI score0.14298EPSS
Exploits0References4
Veracode
Veracode
added 2019/12/10 6:8 a.m.155 views

Integer Overflow

OpenSSL is vulnerable to integer overflows. It exists due to a mishandling of overflow in rsaz512sqr for the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli...

5.3CVSS3.9AI score0.14298EPSS
Exploits0References32Affected Software14
RedhatCVE
RedhatCVE
added 2019/12/09 4:17 a.m.34 views

CVE-2019-1551

An integer overflow was found in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. As per upstream: No EC algorithms are affected. Attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS2.4AI score0.14298EPSS
Exploits0References5
NVD
NVD
added 2019/12/06 6:15 p.m.26 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS5.7AI score0.14298EPSS
Exploits0References24
OSV
OSV
added 2019/12/06 6:15 p.m.1 views

DEBIAN-CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.3AI score0.14298EPSS
Exploits0References1
OSV
OSV
added 2019/12/06 6:15 p.m.3 views

ALPINE-CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS7AI score0.14298EPSS
Exploits0References1
OSV
OSV
added 2019/12/06 6:15 p.m.40 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS5.4AI score
Exploits0References24
Prion
Prion
added 2019/12/06 6:15 p.m.52 views

Buffer overflow

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5CVSS5.5AI score0.14298EPSS
Exploits0References24Affected Software9
OSV
OSV
added 2019/12/06 6:15 p.m.6 views

UBUNTU-CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.7AI score0.14298EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/12/06 6:15 p.m.40 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.7AI score0.14298EPSS
Exploits0References4
CVE
CVE
added 2019/12/06 5:20 p.m.549 views

CVE-2019-1551

CVE-2019-1551 refers to an overflow bug in the x64_64 Montgomery squaring procedure used in OpenSSL during exponentiation with 512-bit moduli. OpenSSL notes no impact to EC, while DH512 attacks are only just feasible under certain conditions. Public disclosures and advisories confirm the issue an...

5.3CVSS6AI score0.14298EPSS
Exploits0References24Affected Software1
Debian CVE
Debian CVE
added 2019/12/06 5:20 p.m.53 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.5AI score0.14298EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2019/12/06 5:20 p.m.35 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.1AI score0.14298EPSS
Exploits0
OpenSSL
OpenSSL
added 2019/12/06 12:0 a.m.162 views

Vulnerability in OpenSSL - rsaz_512_sqr overflow bug on x86_64

There is an overflow bug in the x8664 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

6AI score0.14298EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2019/12/06 12:0 a.m.9 views

PT-2019-4482

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1 through 1.1.1d OpenSSL versions 1.0.2 through 1.0.2t Description The issue is related to an overflow bug in the x64 64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are...

10CVSS8.6AI score0.99999EPSS
Exploits188References242
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/18 3:36 a.m.41 views

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server affects Netezza Performance Portal

Summary IBM HTTP Server is used by IBM Netezza Performance Portal. IBM Netezza Performance Portal has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-0702 DESCRIPTION: OpenSSL could allow a local attacker to obtain sensitive information, caused by a side-channel attack agains...

9.1CVSS0.5AI score0.15934EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/18 3:10 a.m.40 views

Security Bulletin: Multiple vulnerabilities in Open Source OpenSSL affect IBM Netezza Host Management

Summary Open Source OpenSSL is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2017-3735 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error while parsing an...

6.5CVSS0.5AI score0.17699EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2019/10/10 11:39 p.m.48 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS2AI score0.10133EPSS
Exploits0References2
Rows per page
Query Builder