rpm package
suse/keylime&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5
pkg:rpm/suse/keylime&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-38201 | — | < 6.3.2-150400.4.20.1 | 6.3.2-150400.4.20.1 | Aug 25, 2023 | A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier li | ||
| CVE-2023-38200 | — | < 6.3.2-150400.4.17.1 | 6.3.2-150400.4.17.1 | Jul 24, 2023 | A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against its SSL connections. This flaw allows an attacker to exhaust all available connections. |
- CVE-2023-38201Aug 25, 2023affected < 6.3.2-150400.4.20.1fixed 6.3.2-150400.4.20.1
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier li
- CVE-2023-38200Jul 24, 2023affected < 6.3.2-150400.4.17.1fixed 6.3.2-150400.4.17.1
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against its SSL connections. This flaw allows an attacker to exhaust all available connections.