mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-26 20:40:27 +01:00
748 B
748 B
CVE-2016-7798
Description
The openssl gem for Ruby uses the same initialization vector (IV) in GCM Mode (aes-*-gcm) when the IV is set before the key, which makes it easier for context-dependent attackers to bypass the encryption protection mechanism.