CVE-2015-7827
- EPSS 0.44%
- Veröffentlicht 13.05.2016 14:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct million-message attacks by measuring time differences, related to decoding of PKCS#1 padding.
CVE-2015-5727
- EPSS 0.61%
- Veröffentlicht 13.05.2016 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The BER decoder in Botan 1.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, related to a length field.
CVE-2015-5726
- EPSS 0.87%
- Veröffentlicht 13.05.2016 14:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The BER decoder in Botan 0.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (application crash) via an empty BIT STRING in ASN.1 data.
CVE-2014-9742
- EPSS 0.28%
- Veröffentlicht 13.05.2016 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group.