Lucene search
+L

4558 matches found

centos
centos
added 2012/02/01 10:15 p.m.81 views

openssl security update

CentOS Errata and Security Advisory CESA-2012:0086 Updated openssl packages that fix two security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

5CVSS7.1AI score0.16645EPSS
Exploits0References7
redhat
redhat
added 2012/02/01 6:51 p.m.9 views

openssl: SGC restart DoS attack

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.3AI score0.16645EPSS
Exploits0References4
nvd
nvd
added 2012/01/27 12:55 a.m.27 views

CVE-2011-4354

crypto/bn/bnnist.c in OpenSSL before 0.9.8h on 32-bit platforms, as used in stunnel and other products, in certain circumstances involving ECDH or ECDHE cipher suites, uses an incorrect modular reduction algorithm in its implementation of the P-256 and P-384 NIST elliptic curves, which allows...

5.8CVSS6.3AI score0.04044EPSS
Exploits0References8
prion
prion
added 2012/01/27 12:55 a.m.29 views

Authentication flaw

crypto/bn/bnnist.c in OpenSSL before 0.9.8h on 32-bit platforms, as used in stunnel and other products, in certain circumstances involving ECDH or ECDHE cipher suites, uses an incorrect modular reduction algorithm in its implementation of the P-256 and P-384 NIST elliptic curves, which allows...

5.8CVSS6.8AI score0.04044EPSS
Exploits0References8Affected Software1
cve
cve
added 2012/01/27 12:0 a.m.92 views

CVE-2011-4354

OpenSSL vulnerability CVE-2011-4354 affects OpenSSL before 0.9.8h on 32-bit platforms, in the ECDH/ECDHE handshake with P-256 and P-384 curves, due to an incorrect modular reduction algorithm in bn_nist.c. This design flaw allows remote attackers to obtain the TLS server private key after multipl...

5.8CVSS6.3AI score0.04044EPSS
Exploits0References8Affected Software1
debiancve
debiancve
added 2012/01/27 12:0 a.m.42 views

CVE-2011-4354

crypto/bn/bnnist.c in OpenSSL before 0.9.8h on 32-bit platforms, as used in stunnel and other products, in certain circumstances involving ECDH or ECDHE cipher suites, uses an incorrect modular reduction algorithm in its implementation of the P-256 and P-384 NIST elliptic curves, which allows...

5.8CVSS6.2AI score0.04044EPSS
Exploits0
redhat
redhat
added 2012/01/24 9:0 p.m.4 views

openssl: SGC restart DoS attack

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.3AI score0.16645EPSS
Exploits0References4
redhat
redhat
added 2012/01/24 8:59 p.m.7 views

openssl: SGC restart DoS attack

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.3AI score0.16645EPSS
Exploits0References4
nessus
nessus
added 2012/01/17 12:0 a.m.38 views

Mandriva Linux Security Advisory : openssl (MDVSA-2012:006)

Multiple vulnerabilities has been found and corrected in openssl : The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier for remote attackers to recover plaintext via a padding oracle attack CVE-2011-410...

9.3CVSS7.9AI score0.17687EPSS
Exploits0References5
nessus
nessus
added 2012/01/16 12:0 a.m.34 views

FreeBSD : OpenSSL -- multiple vulnerabilities (78cc8a46-3e56-11e1-89b4-001ec9578670)

The OpenSSL Team reports : 6 security flaws have been fixed in OpenSSL 1.0.0f : If X509VFLAGPOLICYCHECK is set in OpenSSL 0.9.8, then a policy check failure can lead to a double-free. OpenSSL prior to 1.0.0f and 0.9.8s failed to clear the bytes used as block cipher padding in SSL 3.0 records. As ...

9.3CVSS7.9AI score0.17687EPSS
Exploits0References8
osv
osv
added 2012/01/06 1:55 a.m.4 views

DEBIAN-CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS9.1AI score0.16645EPSS
Exploits0References1
osv
osv
added 2012/01/06 1:55 a.m.8 views

CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

7.6AI score
Exploits0References22
debiancve
debiancve
added 2012/01/06 1:0 a.m.26 views

CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS8.1AI score0.16645EPSS
Exploits0
cve
cve
added 2012/01/06 1:0 a.m.15795 views

CVE-2011-4619

OpenSSL CVE-2011-4619 concerns the Server Gated Cryptography (SGC) handshake restart handling. The vulnerability exists in OpenSSL prior to 0.9.8s and in 1.x prior to 1.0.0f, where improper handling of handshake restarts can allow remote attackers to cause a denial-of-service (CPU consumption). C...

5CVSS7.9AI score0.16645EPSS
Exploits0References22Affected Software1
ubuntucve
ubuntucve
added 2012/01/05 12:0 a.m.31 views

CVE-2011-4619

The Server Gated Cryptography SGC implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service CPU consumption via unspecified vectors...

5CVSS7.2AI score0.16645EPSS
Exploits0References3
nessus
nessus
added 2012/01/04 12:0 a.m.62 views

OpenSSL < 0.9.6m / 0.9.7d Denial of Service

According to its banner, the remote server is running a version of OpenSSL that is earlier than 0.9.6m or 0.9.7d. A remote attacker can crash the server by sending an overly long Kerberos ticket or a crafted SSL/TLS handshake. C Tenable Network Security, Inc. include"compat.inc"; if description...

7.5CVSS8.3AI score0.10424EPSS
Exploits0References5
nessus
nessus
added 2012/01/04 12:0 a.m.38 views

OpenSSL 1.0.0 < 1.0.0-beta2 DoS

According to its banner, the remote server is running a version of OpenSSL 1.0.0 prior to 1.0.0 beta 2. A remote attacker can crash the server by sending an out-of-sequence DTLS handshake message. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17768;...

5CVSS7AI score0.18241EPSS
Exploits3References5
openssl
openssl
added 2012/01/04 12:0 a.m.32 views

Vulnerability in OpenSSL - SGC Restart DoS Attack

Support for handshake restarts for server gated cryptograpy SGC can be used in a denial-of-service attack. Found by George Kadianakis...

7.8AI score0.16645EPSS
Exploits0Affected Software1
freebsd
freebsd
added 2012/01/04 12:0 a.m.45 views

OpenSSL -- multiple vulnerabilities

The OpenSSL Team reports: 6 security flaws have been fixed in OpenSSL 1.0.0f: If X509VFLAGPOLICYCHECK is set in OpenSSL 0.9.8, then a policy check failure can lead to a double-free. OpenSSL prior to 1.0.0f and 0.9.8s failed to clear the bytes used as block cipher padding in SSL 3.0 records. As a...

9.3CVSS7.8AI score0.17687EPSS
Exploits0References1
nessus
nessus
added 2011/12/13 12:0 a.m.21 views

SuSE 11.1 Security Update : openswan (SAT Patch Number 5424)

openswan's crypto helper was prone to an use-after-free flaw which could potentially allow remote attackers to cause a Denial of Service CVE-2011-4073, bnc727002. Additionally, the following issues have been fixed : - AH handshake problems bnc713986, - potential dereference of no longer valid...

4CVSS5.4AI score0.02086EPSS
Exploits0References4
Rows per page
Query Builder