|
Bugzilla – Activity log for bug 1213385: VUL-0: CVE-2023-37464: cjose: OpenIDC/cjose is a C library implementing the Javascript Object Signing and Encryption (JOSE). The AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the J |
Back to bug 1213385
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| maint-coord+maintenance-robot | 2023-07-17 09:27:34 UTC | Priority | P5 - None | P3 - Medium |
| smash_bz | 2023-07-17 12:00:01 UTC | Whiteboard | CVSSv3.1:SUSE:CVE-2023-37464:8.6:(AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N) | |
| danilo.spinella | 2023-07-18 09:40:52 UTC | Assignee | danilo.spinella | security-team |
| stoyan.manolov | 2023-08-14 05:23:56 UTC | Status | NEW | RESOLVED |
| Resolution | --- | FIXED |
Back to bug 1213385