rpm package
suse/libcryptopp&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5
pkg:rpm/suse/libcryptopp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-50981 | — | < 8.6.0-150400.3.6.1 | 8.6.0-150400.3.6.1 | Dec 18, 2023 | ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853. | ||
| CVE-2023-50980 | — | < 8.6.0-150400.3.3.1 | 8.6.0-150400.3.3.1 | Dec 18, 2023 | gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing. |
- CVE-2023-50981Dec 18, 2023affected < 8.6.0-150400.3.6.1fixed 8.6.0-150400.3.6.1
ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853.
- CVE-2023-50980Dec 18, 2023affected < 8.6.0-150400.3.3.1fixed 8.6.0-150400.3.3.1
gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.