Multiple vulnerabilities in yaSSL
By Umang_D on Mar 19, 2013
|CVE Description||CVSSv2 Base Score||Component||Product and Resolution|
|CVE-2013-1623 Vulnerability allows statistical analysis of timing data of crafted packets||4.3||yaSSL||
|CVE-2012-4929 Cryptographic vulnerabiility||2.6|
This notification describes vulnerabilities fixed in third-party components that are included in Sun's product distribution.
Information about vulnerabilities affecting Oracle Sun products can be found on Oracle Critical Patch Updates and Security Alerts page.