Astra Linux - уязвимость в openssl1.0

The X.509 GENERALNAME type is a generic type used to represent various types of names. One of these name types is known as EDIPARTYNAME. OpenSSL provides a function called GENERALNAMEcmp, which compares different instances of a GENERALNAME to determine whether they are equal. This function behave...

CLSA-2023-1676025915 openssl: Fix of 2 CVEs

CVE-2023-0215: Fix a UAF resulting from a bug in BIOnewNDEF - CVE-2023-0286: Fix GENERALNAMEcmp for x400Address...

The vulnerability of the GENERAL_NAME_cmp function in the OpenSSL library, which allows a hacker to trigger a denial-of-service attack

The vulnerability of the GENERALNAMEcmp function in the OpenSSL library is related to the lack of a mechanism for data type conversion during the processing of x400 addresses. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

OESA-2022-1938 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function...

openssl: EDIPARTYNAME NULL pointer de-reference

A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERALNAMEcmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability...

openssl: EDIPARTYNAME NULL pointer de-reference

A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERALNAMEcmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability...