2 matches found
AZL-34969 CVE-2020-25657 affecting package m2crypto for versions less than 0.38.0-3
A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality...
DSA-3563-1 poppler - security update
Bulletin has no description...