Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-3207HistorySep 22, 2011 - 10:55 a.m.
CVE-2011-3207
2011-09-2210:55:03
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.013
Percentile
86.0%
crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | <Â 1.0.0e-1 | openssl_1.0.0e-1_all.deb |
| Debian | 11 | all | openssl | <Â 1.0.0e-1 | openssl_1.0.0e-1_all.deb |
| Debian | 999 | all | openssl | <Â 1.0.0e-1 | openssl_1.0.0e-1_all.deb |
| Debian | 13 | all | openssl | <Â 1.0.0e-1 | openssl_1.0.0e-1_all.deb |
Related
openvas
openvas
Oracle: Security Advisory (ELSA-2011-1409)
2015-10-06 00:00:00
Fedora Update for openssl FEDORA-2011-12233
2012-03-19 00:00:00
OpenSSL: CRL Verification Vulnerability (20110906) - Linux
2021-08-16 00:00:00
veracode
veracode
CRL Validation Bypass
2020-04-10 01:07:24
f5
f5
SOL15318 - OpenSSL vulnerability CVE-2011-3207
2014-06-05 00:00:00
K15318 : OpenSSL vulnerability CVE-2011-3207
2014-06-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.0e-alt1
2011-09-12 00:00:00
Security fix for the ALT Linux 6 package openssl10 version 1.0.0e-alt1
2011-09-12 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.0e-alt1
2011-09-12 00:00:00
nessus
nessus
Fedora 16 : openssl-1.0.0e-1.fc16 (2011-12233)
2011-09-12 00:00:00
Amazon Linux AMI : openssl (ALAS-2011-4)
2014-10-12 00:00:00
Amazon Linux AMI : openssl (ALAS-2011-04)
2013-09-04 00:00:00
cvelist
cvelist
CVE-2011-3207
2011-09-22 10:00:00
prion
prion
Design/Logic Flaw
2011-09-22 10:55:00
openssl
openssl
Vulnerability in OpenSSL CVE-2011-3207
2011-09-06 00:00:00
cve
cve
CVE-2011-3207
2011-09-22 10:55:03
amazon
amazon
Medium: openssl
2011-10-10 23:40:00
ubuntucve
ubuntucve
CVE-2011-3207
2011-09-22 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openssl-1.0.0e-1.fc16
2011-09-11 01:45:41
[SECURITY] Fedora 15 Update: openssl-1.0.0g-1.fc15
2012-01-24 07:55:34
[SECURITY] Fedora 15 Update: openssl-1.0.0h-1.fc15
2012-04-11 17:05:54
oraclelinux
oraclelinux
openssl security update
2011-10-26 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2021-04-01 00:00:00
redhat
redhat
(RHSA-2011:1409) Moderate: openssl security update
2011-10-26 00:00:00
nvd
nvd
CVE-2011-3207
2011-09-22 10:55:03
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2011-09-06 00:00:00
securityvulns
securityvulns
OpenSSL security vulnerabilities
2011-10-16 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2011-10-09 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.013
Percentile
86.0%
Related for DEBIANCVE:CVE-2011-3207