CVE-2024-36958
- EPSS 0.05%
- Veröffentlicht 30.05.2024 16:15:18
- Zuletzt bearbeitet 01.10.2025 14:07:31
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix nfsd4_encode_fattr4() crasher Ensure that args.acl is initialized early. It is used in an unconditional call to kfree() on the way out of nfsd4_encode_fattr4().
CVE-2022-48566
- EPSS 0.06%
- Veröffentlicht 22.08.2023 19:16:32
- Zuletzt bearbeitet 21.11.2024 07:33:31
An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.
CVE-2023-0361
- EPSS 1.2%
- Veröffentlicht 15.02.2023 18:15:11
- Zuletzt bearbeitet 19.03.2025 18:15:18
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a s...
CVE-2019-10160
- EPSS 2.14%
- Veröffentlicht 07.06.2019 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:18:32
A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting versions 2.7, 3.5, 3.6, 3.7 and from v3.8.0a4 through v3.8.0b1, which still allows an attacker to exploit CVE-2019-9636 by...