Lucene search
+L

42 matches found

rocky
rocky
added 2026/06/02 6:3 p.m.21 views

compat-openssl11 security update

An update is available for compat-openssl11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The OpenSSL toolkit provides support for secure communications betwe...

7.5CVSS7.3AI score0.00805EPSS
Exploits0
nessus
nessus
added 2026/05/28 12:0 a.m.14 views

RockyLinux 9 : compat-openssl11 (RLSA-2026:19187)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19187 advisory. openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS12 processing CVE-2025-69419 Tenable has extracted the preceding description block...

7.4CVSS7.5AI score0.00444EPSS
Exploits1References3
nessus
nessus
added 2026/04/14 12:0 a.m.29 views

Amazon Linux 2 : openssl11, --advisory ALAS2-2026-3249 (ALAS-2026-3249)

The version of openssl11 installed on the remote host is prior to 1.1.1zg-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3249 advisory. Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE:...

8.1CVSS5.9AI score0.01059EPSS
Exploits0References10
nessus
nessus
added 2025/05/27 12:0 a.m.12 views

RHEL 9 : compat-openssl11 (RHSA-2025:7937)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7937 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References4
nessus
nessus
added 2025/05/22 12:0 a.m.12 views

Oracle Linux 9 : compat-openssl11 (ELSA-2025-7937)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-7937 advisory. 1:1.1.1k-5.1 - Fixes cve-2023-0286 X.400 address type confusion in X.509 GeneralName Resolves: RHEL-88969 1:1.1.1k-5 - Update expired certificates used in the...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References2
nessus
nessus
added 2025/05/21 12:0 a.m.17 views

AlmaLinux 9 : compat-openssl11 (ALSA-2025:7937)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:7937 advisory. openssl: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 Tenable has extracted the preceding description block directly from the AlmaLinux security...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References3
osv
osv
added 2025/05/20 10:12 a.m.6 views

RHSA-2025:7937 Red Hat Security Advisory: compat-openssl11 security update

Bulletin has no description...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References8
osv
osv
added 2025/05/16 10:4 a.m.6 views

RHSA-2025:7733 Red Hat Security Advisory: compat-openssl11 security update

Bulletin has no description...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References8
nessus
nessus
added 2025/05/16 12:0 a.m.22 views

RHEL 9 : compat-openssl11 (RHSA-2025:7733)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7733 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References4
amazon
amazon
added 2025/03/06 12:0 a.m.22 views

Medium: openssl11

Issue Overview: Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA signature computations could allow recovering the private key by an attacker. However, measuring...

4.1CVSS4.6AI score0.00601EPSS
Exploits0
osv
osv
added 2024/09/30 4:29 p.m.25 views

RHSA-2022:4899 Red Hat Security Advisory: compat-openssl11 security and bug fix update

Bulletin has no description...

7.5CVSS8.2AI score0.70561EPSS
Exploits2References8
redhat
redhat
added 2024/09/11 1:22 p.m.28 views

Important: Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.9.6

Important Logging for Red Hat OpenShift - 5.9.6 Logging for Red Hat OpenShift - 5.9.6 cluster-logging-rhel9-operator: compat-openssl11CVE-2023-0286...

7.4CVSS7AI score0.59501EPSS
Exploits0References12
nessus
nessus
added 2024/08/17 12:0 a.m.18 views

Amazon Linux 2 : openssl11 (ALAS-2024-2605)

The version of openssl11 installed on the remote host is prior to 1.1.1g-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2605 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

5.6AI score
Exploits0References2
amazon
amazon
added 2024/08/13 12:0 a.m.27 views

Medium: openssl11

Issue Overview: openssl: Use After Free with SSLfreebuffers CVE-2024-4741 Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a...

9.1CVSS8.2AI score0.05582EPSS
Exploits1
nessus
nessus
added 2024/08/13 12:0 a.m.44 views

Amazon Linux 2 : openssl11 (ALAS-2024-2621)

The version of openssl11 installed on the remote host is prior to 1.1.1g-12. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2621 advisory. openssl: Use After Free with SSLfreebuffers CVE-2024-4741 Issue summary: Calling the OpenSSL API function...

9.1CVSS7.7AI score0.05582EPSS
Exploits1References6
amazon
amazon
added 2024/08/06 12:0 a.m.8 views

Low: openssl11

Issue Overview: No CVE associated with this advisory Affected Packages: openssl11 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update openssl11 to update you...

7.2AI score
Exploits0
amazon
amazon
added 2024/06/12 12:0 a.m.21 views

Medium: openssl11

Issue Overview: Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem...

5.9CVSS5.9AI score0.54026EPSS
Exploits0
nessus
nessus
added 2024/06/12 12:0 a.m.28 views

Amazon Linux 2 : openssl11 (ALAS-2024-2564)

The version of openssl11 installed on the remote host is prior to 1.1.1g-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2564 advisory. Issue summary: Some non-default TLS server configurations can cause unboundedmemory growth when processing TLSv1.3 sessions...

5.9CVSS6.6AI score0.54026EPSS
Exploits0References4
nessus
nessus
added 2024/03/05 12:0 a.m.44 views

Amazon Linux 2 : openssl11 (ALAS-2024-2478)

The version of openssl11 installed on the remote host is prior to 1.1.1g-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2478 advisory. Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack The...

5.5CVSS6.5AI score0.03174EPSS
Exploits0References4
nessus
nessus
added 2024/02/29 12:0 a.m.30 views

CentOS 9 : compat-openssl11-1.1.1k-4.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the compat- openssl11-1.1.1k-4.el9 build changelog. - Infinite loop in BNmodsqrt reachable when parsing certificates CVE-2022-0778 Note that Nessus has not tested for this issue but has...

7.5CVSS7AI score0.70561EPSS
Exploits2References2
Rows per page
Query Builder