Lucene search

K
osvGoogleOSV:USN-5051-3
HistoryAug 26, 2021 - 12:53 p.m.

openssl1.0 vulnerability

2021-08-2612:53:57
Google
osv.dev
10
openssl vulnerability
usn-5051-1
ubuntu 18.04 lts
asn.1 strings
cve-2021-3712
denial of service

AI Score

7.9

Confidence

High

EPSS

0.005

Percentile

76.3%

USN-5051-1 fixed a vulnerability in OpenSSL. This update provides the
corresponding update for the openssl1.0 package in Ubuntu 18.04 LTS.

Original advisory details:

Ingo Schwarze discovered that OpenSSL incorrectly handled certain ASN.1
strings. A remote attacker could use this issue to cause OpenSSL to crash,
resulting in a denial of service, or possibly obtain sensitive information.
(CVE-2021-3712)