Ubuntu Security Update USN-7586-1: Botan vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,810
Reaction score
74
Credits
-1,257
It was discovered that Botan could have compiler dependent operations induced under certain circumstances. An attacker could possibly use this issue to cause undefined behavior. (CVE-2024-50382, CVE-2024-50383) Bing Shi discovered that Botan did not limit the size of certain inputs when checking primality and name constraints. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-34702, CVE-2024-34703) It was discovered that Botan did not correctly handle conflicting name constraints. An attacker could possibly use this issue to bypass authentication. (CVE-2024-39312)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8223-1: Roundcube Webmail vulnerabilities
Replies
0
Views
116
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8284-1: GnuTLS vulnerabilities
Replies
0
Views
120
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities
Replies
0
Views
62
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-2: Apache HTTP Server regression
Replies
0
Views
53
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8178-1: oFono vulnerabilities
Replies
0
Views
113
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,388 (members: 3, guests: 2,385)

Latest posts

Top