VDB
JLSEC-2026-240
JLSEC-2026-240
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty...
Risk Scores
CVSS v3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | OpenSSL_jll | 3.0.8+0, 3.0.8+0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- http://www.openwall.com/lists/oss-security/2023/07/15/1 url
- http://www.openwall.com/lists/oss-security/2023/07/19/5 url
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=00e2f5eea29994d19293ec4e8c8775ba73678598 url
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a83f0c958811f07e0d11dfc6b5a6a98edfd5bdc url
- https://github.com/advisories/GHSA-hpqg-7fjp-436p url
- https://nvd.nist.gov/vuln/detail/CVE-2023-2975 url
- https://security.gentoo.org/glsa/202402-08 url
- https://security.netapp.com/advisory/ntap-20230725-0004 url
- https://security.netapp.com/advisory/ntap-20230725-0004/ url
- https://www.openssl.org/news/secadv/20230714.txt url