4 matches found
Security update for Botan (important)
openSUSE Security Update: Security update for Botan Announcement ID: openSUSE-SU-2026:0142-1 Rating: important References: 1261880 Cross-References: CVE-2026-34582 CVSS scores: CVE-2026-34582 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports SLE-15-SP7 A...
OPENSUSE-SU-2026:20528-1 Security update for Botan
This update for Botan fixes the following issues: - CVE-2026-34582: Fixed a client authentication bypass in TLS 1.3 implementation bsc1261880...
CVE-2026-34582
creationtimestamp| type| source ---|---|--- 2026-04-07 23:21:25+00:00| seen| Telegram/ob3ye0FCdfhceb6CimILWC3jRIWmZERTbGMc-OQRsW6HR0 2026-04-08 01:26:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mix56pyoi52o...
CVE-2026-34582
Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationData records to be processed prior to the Finished message being received. A server which is attempting to enforce client authentication via certificates can by bypassed by a client which...