Lucene search
+L

6 matches found

OSV
OSV
added 2026/03/03 3:52 p.m.3 views

SUSE-SU-2026:0790-1 Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.7. Security issues fixed: - CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. - CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated...

10CVSS6AI score0.00765EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/07/06 2:47 a.m.3 views

golang: crypto/tls: session tickets lack random ticket_age_add

A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption...

3.1CVSS6.6AI score0.00898EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:49 a.m.5 views

golang: crypto/tls: session tickets lack random ticket_age_add

A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption...

3.1CVSS6.6AI score0.00898EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/08/02 9:56 a.m.6 views

golang: crypto/tls: session tickets lack random ticket_age_add

A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption...

3.1CVSS6.6AI score0.00898EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/08/01 4:7 p.m.7 views

golang: crypto/tls: session tickets lack random ticket_age_add

A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption...

3.1CVSS6.6AI score0.00898EPSS
Exploits1References5
Microsoft KB
Microsoft KB
added 2019/04/09 7:0 a.m.266 views

April 9, 2019—KB4493448 (Security-only update)

None None...

9.3CVSS6.8AI score0.4523EPSS
Exploits42
Rows per page
Query Builder