Ubuntu Security Update USN-6307-1: JOSE for C/C++ vulnerability

Thread starter LinuxBot
Start date Aug 25, 2023

LinuxBot

Member

Aug 25, 2023

#1

It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. An attacker could use this to cause a denial of service (system crash) or might expose sensitive information.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6307-1 kitty - security update

Replies: 0

Views: 53

May 29, 2026

LinuxBot

Ubuntu Security Update USN-8005-1: GNU C Library vulnerabilities

Replies: 0

Views: 190

Feb 4, 2026

LinuxBot

Ubuntu Security Update USN-8128-1: CryptX vulnerabilities

Replies: 0

Views: 101

Mar 26, 2026

LinuxBot

Ubuntu Security Update USN-8313-1: XML-RPC for C and C++ vulnerabilities

Replies: 0

Views: 61

May 27, 2026

LinuxBot

Ubuntu Security Update USN-7925-1: c-ares vulnerability

Replies: 0

Views: 185

Dec 11, 2025

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

f33dm3bits
Super Moderator

Members online

Total: 1,628 (members: 8, guests: 1,620)

Latest posts

Linux Mint - can't access terminal
- Latest: Condobloke
- 9 minutes ago
Getting Started
What are Your Takes On "GNU Purism"
- Latest: piorunz
- 34 minutes ago
General Computing
C
Run this script in the current bash terminal shell window, but have it open shred in another bash terminal shell window?
- Latest: CoincidentalHell
- 42 minutes ago
General Linux Topics
A
Guidance with bash shell scripting?
- Latest: ArchieLinux
- Today at 3:51 PM
Command Line
Linux on Macbook 12" early 2016
- Latest: Rocketing-warp9
- Today at 1:46 PM
General Linux Topics

Top