SA-2023-016 - Sweet32 (CVE-2016-2183)
Summary The DES and Triple DES ciphers, as used in the TLS, SSH, and IPsec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier...
Blog Articles
SA-2023-015 - Apache HTTP Server mod_proxy_ajp (CVE-2022-36760)
Summary Inconsistent interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forward...
SA-2023-014 - Apache HTTP Server mod_dav (CVE-2006-20001)
Summary A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to c...
- FredrikB-NN2 on: SA-2023-103 - Privilege escalation via Redis serve...
- ACollins on: SA-2023-091 - OpenSSH information leak (CVE-2020-1...
- CraigW on: SA-2023-023 - OpenSSL c_rehash script (CVE-2022-20...
- AntonioP on: Security Advisory - SA-2022-007 - TLS Heap Overflo...
-
SamPirok
on:
Security Advisory: SA-2022-004 – Spring Framework
- Danny_Schaper on: Security Advisory - SA-2022-003 - "Spring4Shell" (...
- StephanH on: Vulnerability Notice VN-2021-460- "FragAttacks" Wi...
