FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  514783
Date:      2019-10-19
Time:      09:52:18Z
Committer: wen

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
e78bfc9d-cb1e-11e5-b251-0050562a4d7bpy-rsa -- Bleichenbacher'06 signature forgery vulnerability

Filippo Valsorda reports:

python-rsa is vulnerable to a straightforward variant of the Bleichenbacher'06 attack against RSA signature verification with low public exponent.


Discovery 2016-01-05
Entry 2016-02-04
py27-rsa
py32-rsa
py33-rsa
py34-rsa
py35-rsa
lt 3.3

CVE-2016-1494
https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/
https://bitbucket.org/sybren/python-rsa/pull-requests/14/security-fix-bb06-attack-in-verify-by
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1494
http://www.openwall.com/lists/oss-security/2016/01/05/3
http://www.openwall.com/lists/oss-security/2016/01/05/1