Debian Oldstable phpseclib Key Padding Attack Fix DSA-6185-1 CVE-2026-32935

Debian Oldstable phpseclib Key Padding Attack Fix DSA-6185-1 CVE-2026-32935

SecurityVulns
Yanac

It was discovered that the AES-CBC implementation in the PHP Secure Communications Library was susceptible to a padding oracle timing attack. For the oldstable distribution (bookworm), these problems have been fixed in version 1.0.20-1+deb12u3. This update also fixes CVE-2023-52892. For the stable distribution (trixie), these problems have been fixed inLinuxSecurity – Security AdvisoriesRead More