Summaryyaws_config.erl in Yaws loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine. Products Potentially Affected OS/Product E...
SummaryMozilla Network Security Services with certain settings of the SSL_ENABLE_RENEGOTIATION option, does not properly restrict client-initiated renegotiation within the SSL and TLS protocols. Produ...
SummaryThe TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL befo...
SamPirok
on:
Security Advisory: SA-2022-004 – Spring Framework
