Описание
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time window where Tang private keys become readable by other processes on the same host.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | tang | Out of support scope | ||
| Red Hat Enterprise Linux 8 | tang | Fixed | RHSA-2023:7022 | 14.11.2023 |
| Red Hat Enterprise Linux 9 | tang | Fixed | RHSA-2023:6492 | 07.11.2023 |
Показывать по
Дополнительная информация
Статус:
5.3 Medium
CVSS3
Связанные уязвимости
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time window where Tang private keys become readable by other processes on the same host.
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time window where Tang private keys become readable by other processes on the same host.
A race condition exists in the Tang server functionality for key gener ...
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time window where Tang private keys become readable by other processes on the same host.
ELSA-2023-7022: tang security and bug fix update (MODERATE)
5.3 Medium
CVSS3