Lucene search
K

142 matches found

Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.55 views

openSUSE Security Update : openssl (openSUSE-2016-1134)

This update for openssl fixes the following issues : OpenSSL Security Advisory 22 Sep 2016 bsc999665 Severity: High - OCSP Status Request extension unbounded memory growth CVE-2016-6304 bsc999666 Severity: Low - Pointer arithmetic undefined behaviour CVE-2016-2177 bsc982575 - Constant time flag n...

9.8CVSS7.2AI score0.95707EPSS
Exploits8References29
Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.117 views

CentOS 6 / 7 : openssl (CESA-2016:1940)

An update for openssl is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

9.8CVSS8.1AI score0.95707EPSS
Exploits8References11
Tenable Nessus
Tenable Nessus
added 2016/09/28 12:0 a.m.92 views

RHEL 6 / 7 : openssl (RHSA-2016:1940)

An update for openssl is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

9.8CVSS8.1AI score0.95707EPSS
Exploits8References19
Tenable Nessus
Tenable Nessus
added 2016/09/27 12:0 a.m.59 views

SUSE SLES12 Security Update : openssl (SUSE-SU-2016:2387-1)

This update for openssl fixes the following issues: OpenSSL Security Advisory 22 Sep 2016 bsc999665 Severity: High - OCSP Status Request extension unbounded memory growth CVE-2016-6304 bsc999666 Severity: Low - Pointer arithmetic undefined behaviour CVE-2016-2177 bsc982575 - Constant time flag no...

9.8CVSS7.2AI score0.95707EPSS
Exploits8References41
Oracle linux
Oracle linux
added 2016/09/27 12:0 a.m.61 views

openssl security update

1.0.1e-48.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in DTLS - fix CVE-2016-2180 - OOB read in TSOBJprintbio - fix CVE-2016-2181 - DTLS1 replay protection and unprocessed records issue - fix...

9.8CVSS1.4AI score0.95707EPSS
Exploits8
OpenVAS
OpenVAS
added 2016/09/26 12:0 a.m.36 views

OpenSSL 1.0.2 and 1.0.1 Multiple Vulnerabilities (Sep 2016) - Linux

OpenSSL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl"; ifdescription...

9.8CVSS8.5AI score0.44218EPSS
Exploits1References1
OSV
OSV
added 2016/09/25 12:0 a.m.40 views

DLA-637-1 openssl - security update

Bulletin has no description...

9.8CVSS6.9AI score0.63029EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2016/09/23 12:0 a.m.49 views

Debian DSA-3673-1 : openssl - security update

Several vulnerabilities were discovered in OpenSSL : - CVE-2016-2177 Guido Vranken discovered that OpenSSL uses undefined pointer arithmetic. Additional information can be found at https://www.openssl.org/blog/blog/2016/06/27/undefined-p ointer-arithmetic/ - CVE-2016-2178 Cesar Pereida, Billy...

9.8CVSS7.4AI score0.95707EPSS
Exploits8References25
ALT Linux
ALT Linux
added 2016/09/23 12:0 a.m.48 views

Security fix for the ALT Linux 7 package openssl10 version 1.0.1u-alt0.M70P.1

1.0.1u-alt0.M70P.1 built Sept. 23, 2016 Gleb Fotengauer-Malinovskiy in task 169809 Sept. 22, 2016 Gleb Fotengauer-Malinovskiy - Updated to 1.0.1u fixes CVE-2016-2177, CVE-2016-2178, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303,...

7.8CVSS8.1AI score0.95707EPSS
Exploits8
OpenVAS
OpenVAS
added 2016/09/23 12:0 a.m.42 views

Ubuntu: Security Advisory (USN-3087-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.95707EPSS
Exploits8References2
FreeBSD Advisory
FreeBSD Advisory
added 2016/09/23 12:0 a.m.33 views

FreeBSD-SA-16:26.openssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:26.openssl Security Advisory The FreeBSD Project Topic: Multiple OpenSSL vulnerabilities Category: contrib Module: openssl Announced: 2016-09-23; revised on...

9.8CVSS7.2AI score0.63029EPSS
Exploits2
OSV
OSV
added 2016/09/23 12:0 a.m.51 views

DSA-3673-2 openssl - regression update

Bulletin has no description...

6.8AI score
Exploits0
Slackware Linux
Slackware Linux
added 2016/09/22 6:53 p.m.62 views

[slackware-security] openssl

New openssl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openssl-1.0.2i-i586-1slack14.2.txz: Upgraded. This update fixes denial-of-service and other security issues. For more...

9.8CVSS8.2AI score0.95707EPSS
Exploits9
Debian
Debian
added 2016/09/22 4:50 p.m.66 views

[SECURITY] [DSA 3673-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3673-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 22, 2016 https://www.debian.org/security/faq -...

9.8CVSS8.8AI score0.95707EPSS
Exploits8
ALT Linux
ALT Linux
added 2016/09/22 12:0 a.m.56 views

Security fix for the ALT Linux 9 package openssl10 version 1.0.2i-alt1

Sept. 22, 2016 Gleb Fotengauer-Malinovskiy 1.0.2i-alt1 - Updated to 1.0.2i fixes CVE-2016-2177, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2016-6306...

7.8CVSS8.1AI score0.95707EPSS
Exploits8
ALT Linux
ALT Linux
added 2016/09/22 12:0 a.m.42 views

Security fix for the ALT Linux 8 package openssl10 version 1.0.2i-alt1

1.0.2i-alt1 built Sept. 22, 2016 Gleb Fotengauer-Malinovskiy in task 169814 Sept. 22, 2016 Gleb Fotengauer-Malinovskiy - Updated to 1.0.2i fixes CVE-2016-2177, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2016-6306...

7.8CVSS8.1AI score0.95707EPSS
Exploits8
ALT Linux
ALT Linux
added 2016/09/22 12:0 a.m.97 views

Security fix for the ALT Linux 9 package openssl1.1 version 1.0.2i-alt1

Sept. 22, 2016 Gleb Fotengauer-Malinovskiy 1.0.2i-alt1 - Updated to 1.0.2i fixes CVE-2016-2177, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2016-6306...

7.8CVSS8.1AI score0.95707EPSS
Exploits8
OpenVAS
OpenVAS
added 2016/09/21 12:0 a.m.23 views

Debian: Security Advisory (DSA-3673-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.95707EPSS
Exploits8References4
UbuntuCve
UbuntuCve
added 2016/09/16 12:0 a.m.35 views

CVE-2016-2181

The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service false-positive packet drops via spoofed DTLS records, related to reclayerd1...

7.5CVSS7AI score0.22634EPSS
Exploits1References3
CVE
CVE
added 2016/09/16 12:0 a.m.234 views

CVE-2016-2181

OpenSSL CVE-2016-2181 affects the Datagram TLS (DTLS) replay protection: a flaw in the replay window handling could cause legitimate packets to be dropped when a crafted sequence number is used, enabling a remote attacker to cause DoS. Upstream fixes were released (e.g., OpenSSL 1.0.2.x and 1.0.1...

7.5CVSS8.3AI score0.22634EPSS
Exploits1References41Affected Software1
Rows per page
Query Builder