Updated: 2025-12-14 03:07:23.01104
Description:
The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | MEDIUM | 5.0 |
| CVSS Version 3.x | HIGH | 7.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| Debian 10 | python | 2.7 | 7.5 | HIGH | Not Vulnerable | 2025-09-05 09:17:11 | ||
| Debian 11 | python | 2.7 | 7.5 | HIGH | Not Vulnerable | 2025-09-05 09:17:11 | ||
| Debian 12 | python | 2.7 | 7.5 | HIGH | Not Vulnerable | 2025-09-05 09:17:10 | ||
| Debian 13 | python | 2.7 | 7.5 | HIGH | Not Vulnerable | 2025-10-14 14:44:19 | ||
| EL 10 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-09-29 23:25:56 | ||
| EL 7 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-07-18 02:11:48 | ||
| EL 8 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-07-18 02:11:48 | ||
| EL 9 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-07-18 02:11:47 | ||
| Ubuntu 16.04 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-07-25 02:02:40 | ||
| Ubuntu 18.04 | python | 2.7 | 7.5 | HIGH | Already Fixed | 2025-07-25 02:02:39 |