VulnerableCode Package Details - pkg:deb/debian/botan@2.9.0-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-32jb-t7zq-uyhe Aliases: CVE-2021-24115	In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).	2.17.3+dfsg-2 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-32jb-t7zq-uyhe
Aliases:
CVE-2021-24115

In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).

2.17.3+dfsg-2
Affected by 7 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-31pb-3pss-ybg3	A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an unblinded Montgomery ladder whose loop iteration count depends on the bitlength of the secret. This issue affects only key generation, not ECDSA signatures or ECDH key agreement.	CVE-2018-20187
VCID-851y-jyry-8qe1	Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ec_group/ec_group.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.	CVE-2018-12435
VCID-bdvc-y1wv-gkcf	An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffer, aka an over-read. The MAC comparison will subsequently fail and the connection will be closed. This could be used for denial of service. No information leak occurs.	CVE-2018-9860
VCID-wqt2-m3gv-6fgk	Botan 2.2.0 - 2.4.0 (fixed in 2.5.0) improperly handled wildcard certificates and could accept certain certificates as valid for hostnames when, under RFC 6125 rules, they should not match. This only affects certificates issued to the same domain as the host, so to impersonate a host one must already have a wildcard certificate matching other hosts in the same domain. For example, b*.example.com would match some hostnames that do not begin with a 'b' character.	CVE-2018-9127

Vulnerability

Summary

Aliases

VCID-31pb-3pss-ybg3

A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an unblinded Montgomery ladder whose loop iteration count depends on the bitlength of the secret. This issue affects only key generation, not ECDSA signatures or ECDH key agreement.

CVE-2018-20187

VCID-851y-jyry-8qe1

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ec_group/ec_group.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.

CVE-2018-12435

VCID-bdvc-y1wv-gkcf

An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffer, aka an over-read. The MAC comparison will subsequently fail and the connection will be closed. This could be used for denial of service. No information leak occurs.

CVE-2018-9860

VCID-wqt2-m3gv-6fgk

Botan 2.2.0 - 2.4.0 (fixed in 2.5.0) improperly handled wildcard certificates and could accept certain certificates as valid for hostnames when, under RFC 6125 rules, they should not match. This only affects certificates issued to the same domain as the host, so to impersonate a host one must already have a wildcard certificate matching other hosts in the same domain. For example, b*.example.com would match some hostnames that do not begin with a 'b' character.

CVE-2018-9127

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T01:10:29.478933+00:00	Debian Oval Importer	Fixing	VCID-wqt2-m3gv-6fgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:44:56.654912+00:00	Debian Oval Importer	Fixing	VCID-31pb-3pss-ybg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:29:21.482226+00:00	Debian Oval Importer	Fixing	VCID-bdvc-y1wv-gkcf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:49:46.939042+00:00	Debian Oval Importer	Fixing	VCID-851y-jyry-8qe1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:09:08.850301+00:00	Debian Oval Importer	Affected by	VCID-32jb-t7zq-uyhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:42:21.823956+00:00	Debian Oval Importer	Fixing	VCID-wqt2-m3gv-6fgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:17:37.313946+00:00	Debian Oval Importer	Fixing	VCID-31pb-3pss-ybg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:04:40.144043+00:00	Debian Oval Importer	Fixing	VCID-bdvc-y1wv-gkcf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:30:27.653823+00:00	Debian Oval Importer	Fixing	VCID-851y-jyry-8qe1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:52:51.981273+00:00	Debian Oval Importer	Affected by	VCID-32jb-t7zq-uyhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-09T00:12:09.981097+00:00	Debian Oval Importer	Fixing	VCID-wqt2-m3gv-6fgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:48:29.179807+00:00	Debian Oval Importer	Fixing	VCID-31pb-3pss-ybg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:38:28.086046+00:00	Debian Oval Importer	Fixing	VCID-bdvc-y1wv-gkcf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:10:46.102001+00:00	Debian Oval Importer	Fixing	VCID-851y-jyry-8qe1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:37:38.419184+00:00	Debian Oval Importer	Affected by	VCID-32jb-t7zq-uyhe	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0