CVE-2016-1494

Опубликовано: 13 янв. 2016

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 5.3

Описание

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

Релиз	Статус	Примечание
artful	not-affected
bionic	not-affected
devel	not-affected
esm-apps/bionic	not-affected
esm-apps/xenial	not-affected	3.2.3-1.1
esm-infra-legacy/trusty	released	3.1.2-1ubuntu0.1
precise	DNE
precise/esm	DNE
trusty	released	3.1.2-1ubuntu0.1
trusty/esm	released	3.1.2-1ubuntu0.1

Показывать по

Ссылки на источники

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2016-1494

CVSS3: 5.3

nvd

почти 10 лет назад

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

CVE-2016-1494

msrc

4 месяца назад

The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.

CVE-2016-1494

CVSS3: 5.3

debian

почти 10 лет назад

The verify function in the RSA package for Python (Python-RSA) before ...

openSUSE-SU-2016:0108-1

suse-cvrf

почти 10 лет назад

Security update for python-rsa

SUSE-SU-2016:0107-1

suse-cvrf

почти 10 лет назад

Security update for python-rsa

5 Medium

CVSS2

5.3 Medium

CVSS3

CVE-2016-1494

Описание

Пакет python-rsa

Ссылки на источники

Связанные уязвимости