CVE-2016-2194
- EPSS 2.56%
- Veröffentlicht 13.05.2016 14:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ressol function in Botan before 1.10.11 and 1.11.x before 1.11.27 allows remote attackers to cause a denial of service (infinite loop) via unspecified input to the OS2ECP function, related to a composite modulus.
CVE-2015-7827
- EPSS 2.44%
- Veröffentlicht 13.05.2016 14:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct million-message attacks by measuring time differences, related to decoding of PKCS#1 padding.
CVE-2015-5727
- EPSS 1.48%
- Veröffentlicht 13.05.2016 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The BER decoder in Botan 1.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, related to a length field.
CVE-2015-5726
- EPSS 1.36%
- Veröffentlicht 13.05.2016 14:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The BER decoder in Botan 0.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (application crash) via an empty BIT STRING in ASN.1 data.
CVE-2014-9742
- EPSS 1.43%
- Veröffentlicht 13.05.2016 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group.