jitterentropy (SUSE:Linux Micro 6.0) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.0 package jitterentropy, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2024-5535 — CVSS 9.1 (critical): Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or…
CVE-2024-4741 — CVSS 7.5 (high): Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed that was previously freed in some…
CVE-2024-6119 — CVSS 7.5 (high): Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an…
CVE-2024-2511 — CVSS 5.9 (medium): Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact…
CVE-2024-4603 — CVSS 5.3 (medium): Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions…