Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-5095HistoryJun 20, 2012 - 5:55 p.m.
CVE-2011-5095
2012-06-2017:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
32.6%
The Diffie-Hellman key-exchange implementation in OpenSSL 0.9.8, when FIPS mode is enabled, does not properly validate a public parameter, which makes it easier for man-in-the-middle attackers to obtain the shared secret key by modifying network traffic, a related issue to CVE-2011-1923.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | < 0.9.8a-1 | openssl_0.9.8a-1_all.deb |
| Debian | 11 | all | openssl | < 0.9.8a-1 | openssl_0.9.8a-1_all.deb |
| Debian | 10 | all | openssl | < 0.9.8a-1 | openssl_0.9.8a-1_all.deb |
| Debian | 999 | all | openssl | < 0.9.8a-1 | openssl_0.9.8a-1_all.deb |
| Debian | 13 | all | openssl | < 0.9.8a-1 | openssl_0.9.8a-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2012-06-20 17:55:00
Design/Logic Flaw
2012-06-20 17:55:00
ubuntucve
ubuntucve
CVE-2011-1923
2012-06-20 00:00:00
CVE-2011-5095
2012-06-20 00:00:00
cve
cve
CVE-2011-1923
2012-06-20 17:55:00
CVE-2011-5095
2012-06-20 17:55:00
nessus
nessus
SuSE 11.1 Security Update : libopenssl (SAT Patch Number 6521)
2013-01-25 00:00:00
SSL Server Accepts Weak Diffie-Hellman Keys
2011-04-11 00:00:00
GLSA-201310-10 : PolarSSL: Multiple vulnerabilities
2013-10-18 00:00:00
openvas
openvas
OpenSSL 0.9.8 Information Disclosure Vulnerability
2020-11-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0885-1)
2021-06-09 00:00:00
Gentoo Security Advisory GLSA 201310-10
2015-09-29 00:00:00
gentoo
gentoo
PolarSSL: Multiple vulnerabilities
2013-10-17 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
32.6%
Related for DEBIANCVE:CVE-2011-5095