Lucene search
GoogleOSV:SUSE-SU-2024:1947-1HistoryJun 07, 2024 - 3:06 p.m.
Security update for openssl-3
2024-06-0715:06:16
Google
osv.dev
1
security update
openssl-3
tlsv1.3
cve-2024-2511
cve-2024-4603
dsa parameter checks
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
5.5
Confidence
High
This update for openssl-3 fixes the following issues:
- CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3 (bsc#1222548).
- CVE-2024-4603: Fixed DSA parameter checks for excessive sizes before validating (bsc#1224388).
Related
openvas
openvas
openSUSE: Security Advisory for openssl (SUSE-SU-2024:1947-1)
2024-06-12 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1947-1)
2024-06-10 00:00:00
Ubuntu: Security Advisory (USN-6937-1)
2024-08-01 00:00:00
ibm
ibm
nessus
nessus
SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2024:1947-1)
2024-06-08 00:00:00
OpenSSL 3.0.0 < 3.0.14 Multiple Vulnerabilities
2024-04-08 00:00:00
CentOS 9 : openssl-3.2.2-1.el9
2024-06-11 00:00:00
osv
osv
openssl vulnerabilities
2024-07-31 15:46:50
CVE-2024-4603
2024-05-16 16:15:10
Security update for openssl-1_1
2024-06-07 15:07:42
ubuntu
ubuntu
OpenSSL vulnerabilities
2024-07-31 00:00:00
cbl_mariner
cbl_mariner
alpinelinux
alpinelinux
CVE-2024-4603
2024-05-16 16:15:10
CVE-2024-2511
2024-04-08 14:15:07
redos
redos
ROS-20240522-04
2024-05-22 00:00:00
ROS-20240606-10
2024-06-06 00:00:00
vulnrichment
vulnrichment
CVE-2024-2511 Unbounded memory growth with session handling in TLSv1.3
2024-04-08 13:51:12
CVE-2024-4603 Excessive time spent checking DSA keys and parameters
2024-05-16 15:21:20
cvelist
cvelist
CVE-2024-2511 Unbounded memory growth with session handling in TLSv1.3
2024-04-08 13:51:12
CVE-2024-4603 Excessive time spent checking DSA keys and parameters
2024-05-16 15:21:20
mageia
mageia
Updated openssl packages fix security vulnerability
2024-04-13 19:56:38
Updated openssl packages fix security vulnerabilities
2024-05-31 18:15:28
Updated quictls packages fix security vulnerabilities
2024-08-19 22:12:14
openssl
openssl
Vulnerability in OpenSSL CVE-2024-2511
2024-04-08 00:00:00
Vulnerability in OpenSSL CVE-2024-4603
2024-05-16 00:00:00
cve
cve
CVE-2024-2511
2024-04-08 14:15:07
CVE-2024-4603
2024-05-16 16:15:10
ubuntucve
ubuntucve
CVE-2024-2511
2024-04-08 00:00:00
CVE-2024-4603
2024-05-16 00:00:00
nvd
nvd
CVE-2024-4603
2024-05-16 16:15:10
CVE-2024-2511
2024-04-08 14:15:07
freebsd
freebsd
OpenSSL -- Denial of Service vulnerability
2024-05-16 00:00:00
OpenSSL -- Unbounded memory growth with session handling in TLSv1.3
2024-04-08 00:00:00
debiancve
debiancve
CVE-2024-4603
2024-05-16 16:15:10
CVE-2024-2511
2024-04-08 14:15:07
redhatcve
redhatcve
CVE-2024-2511
2024-04-09 06:58:20
CVE-2024-4603
2024-05-17 20:36:02
wolfi
wolfi
CVE-2024-4603 vulnerabilities
2024-09-24 03:13:46
CVE-2024-2511 vulnerabilities
2024-09-24 03:13:46
veracode
veracode
Denial Of Service (DoS)
2024-04-10 19:50:39
amazon
amazon
Medium: edk2
2024-05-09 19:16:00
Medium: openssl11
2024-06-06 20:17:00
cgr
cgr
CVE-2024-2511 vulnerabilities
2024-05-19 03:07:16
aix
aix
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0243
2024-04-11 00:00:00
Critical Photon OS Security Update - PHSA-2024-4.0-0592
2024-04-17 00:00:00
slackware
slackware
[slackware-security] openssl
2024-07-17 19:35:44
oracle
oracle
Oracle Critical Patch Update Advisory - July 2024
2024-07-16 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
5.5
Confidence
High
Related for OSV:SUSE-SU-2024:1947-1