Read Time:13 Second

It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly
uses the Tag length from the actual Authentication Tag provided in the JWE.
An attacker could use this to cause a denial of service (system crash) or
might expose sensitive information.

Read More

More Stories

rpki-client-9.5-1.el10_0

FEDORA-EPEL-2025-2ec16b3a94 Packages in this update: rpki-client-9.5-1.el10_0 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc41

FEDORA-2025-17fed14cc3 Packages in this update: rpki-client-9.5-1.fc41 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc40

FEDORA-2025-d5fdbedb7f Packages in this update: rpki-client-9.5-1.fc40 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el9

FEDORA-EPEL-2025-f8a9a83d41 Packages in this update: rpki-client-9.5-1.el9 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el10_1

FEDORA-EPEL-2025-f8fbd7b9af Packages in this update: rpki-client-9.5-1.el10_1 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc42

FEDORA-2025-3887603605 Packages in this update: rpki-client-9.5-1.fc42 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....