pkg:Debian/php-phpseclib

共 13 筆 CVEHIGH7MEDIUM5LOW1

✅ 檢查你的版本

所有已知漏洞

  • HIGH7.5CVE-2024-27355Duplicate Advisory: phpseclib does not properly limit the ASN1 OID length
    from 0, < 2.0.30-2+deb11u2
  • HIGH7.5CVE-2024-27354phpseclib: guardrails needed on isPrime and randomPrime
    from 0, < 2.0.30-2+deb11u2
  • HIGH7.5CVE-2024-27354phpseclib: guardrails needed on isPrime and randomPrime
    from 0, < 2.0.30-2~deb10u3
  • HIGH7.5CVE-2026-44167phpseclib has a CVE-2024-27355 mitigation bypass — OID amplification DoS in ASN1::decodeOID()
    from 0
  • HIGH7.5CVE-2023-52892phpseclib - security update
    from 0
  • HIGH7.5CVE-2021-30130php-phpseclib - security update
    from 0, < 2.0.30-2~deb10u1
  • HIGH7.5CVE-2021-30130php-phpseclib - security update
    from 0, < 2.0.30-2
  • MEDIUM5.9CVE-2026-32935phpseclib's AES-CBC unpadding susceptible to padding oracle timing attack
    from 0
  • MEDIUM5.9CVE-2026-32935phpseclib's AES-CBC unpadding susceptible to padding oracle timing attack
    from 0, < 2.0.42-1+deb12u3
  • MEDIUM5.9CVE-2023-48795Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
    from 0, < 2.0.30-2~deb10u2
  • MEDIUM5.9CVE-2023-48795Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
    from 0, < 2.0.30-2+deb11u1
  • MEDIUM5.9CVE-2023-48795Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
    from 0, < 2.0.30-2+deb11u1
  • LOW3.7CVE-2026-40194phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals()
    from 0