AES OCB mode for 32-bit x86 platforms using AES-NI assembly optimized implementation may not encrypt data entirely, potentially revealing preexisting memory content. OpenSSL 3.0.5 fixed the issue
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
OpenSSL | Vulnerability in OpenSSL - AES OCB fails to encrypt some bytes | 5 Jul 202200:00 | – | openssl |
Tenable Nessus | EulerOS 2.0 SP8 : openssl (EulerOS-SA-2022-2476) | 9 Oct 202200:00 | – | nessus |
Tenable Nessus | Amazon Linux 2 : openssl11 (ALAS-2023-1974) | 7 Mar 202300:00 | – | nessus |
Tenable Nessus | CBL Mariner 2.0 Security Update: openssl (CVE-2022-2097) | 20 Mar 202300:00 | – | nessus |
Tenable Nessus | Photon OS 4.0: Openssl PHSA-2022-4.0-0207 | 23 Jul 202400:00 | – | nessus |
Tenable Nessus | OpenSSL 1.1.1 < 1.1.1q Vulnerability | 5 Jul 202200:00 | – | nessus |
Tenable Nessus | Oracle MySQL Connectors (Oct 2022 CPU) | 20 Oct 202200:00 | – | nessus |
Tenable Nessus | SUSE SLES15 Security Update : openssl-1_1 (SUSE-SU-2022:2311-1) | 8 Jul 202200:00 | – | nessus |
Tenable Nessus | Amazon Linux 2022 : (ALAS2022-2022-147) | 14 Oct 202200:00 | – | nessus |
Tenable Nessus | FreeBSD : OpenSSL -- AES OCB fails to encrypt some bytes (a28e8b7e-fc70-11ec-856e-d4c9ef517024) | 5 Jul 202200:00 | – | nessus |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | openssl | 3.0.5-1 | openssl_3.0.5-1_all.deb |
Debian | 11 | all | openssl | 1.1.1n-0+deb11u4 | openssl_1.1.1n-0+deb11u4_all.deb |
Debian | 999 | all | openssl | 3.0.5-1 | openssl_3.0.5-1_all.deb |
Debian | 13 | all | openssl | 3.0.5-1 | openssl_3.0.5-1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo