Lucene search
GoogleOSV:DSA-2100-1HistoryAug 30, 2010 - 12:00 a.m.
openssl - double free
2010-08-3000:00:00
Google
osv.dev
11
George Guninski discovered a double free in the ECDH code of the OpenSSL
crypto library, which may lead to denial of service and potentially the
execution of arbitrary code.
For the stable distribution (lenny), this problem has been fixed in
version 0.9.8g-15+lenny8.
For the unstable distribution (sid), this problem has been fixed in
version 0.9.8o-2.
We recommend that you upgrade your openssl packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openssl | eq | 0.9.8g-15 | |
| openssl | eq | 0.9.8g-15+lenny1 | |
| openssl | eq | 0.9.8g-15+lenny3 | |
| openssl | eq | 0.9.8g-15+lenny5 | |
| openssl | eq | 0.9.8g-15+lenny6 | |
| openssl | eq | 0.9.8g-15+lenny7 |