Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP5 package Botan, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2024-34703 — CVSS 7.5 (high): Botan is a C++ cryptography library. X.509 certificates can identify elliptic curves using either an object identifier or using explicit…
CVE-2024-50382 — CVSS 5.9 (medium): Botan before 3.6.0, when certain LLVM versions are used, has compiler-induced secret-dependent control flow in lib/utils/ghash/ghash.cpp in…
CVE-2024-50383 — CVSS 5.9 (medium): Botan before 3.6.0, when certain GCC versions are used, has a compiler-induced secret-dependent operation in lib/utils/donna128.h in…
CVE-2024-34702 — CVSS 5.3 (medium): Botan is a C++ cryptography library. X.509 certificates can identify elliptic curves using either an object identifier or using explicit…
CVE-2024-39312 — CVSS 5.3 (medium): Botan is a C++ cryptography library. X.509 certificates can identify elliptic curves using either an object identifier or using explicit…