10 matches found
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the PbMemory::LoadFromSharedMemory function in the bundled Python backend. An attacker could cause an out-of-bounds read by sending a specially crafted request, leading to information disclosure of private memory...
CBL Mariner 2.0 Security Update: openssl (CVE-2021-3712)
The version of openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3712 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer...
AlmaLinux 9 : openssl (ALSA-2023:0946)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0946 advisory. - A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after...
EulerOS Virtualization 3.0.6.6 : openssl098e (EulerOS-SA-2022-1136)
According to the versions of the openssl098e package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string...
EulerOS Virtualization 3.0.2.0 : openssl (EulerOS-SA-2021-2828)
According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string da...
Oracle Linux 8 : openssl (ELSA-2021-5226)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-5226 advisory. - CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings Tenable has extracted the preceding description block directly from the Oracle Linux...
F5 Networks BIG-IP : OpenSSL vulnerability (K19559038)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K19559038 advisory. ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the...
SUSE SLES12 Security Update : compat-openssl098 (SUSE-SU-2021:3019-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3019-1 advisory. - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings bsc1189521. Tenab...
openSUSE 15 Security Update : openssl-1_0_0 (openSUSE-SU-2021:1189-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1189-1 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field...
SUSE SLES11: libopenssl0_9_8 / libopenssl0_9_8-32bit / libopenssl0_9_8-hmac / etc (SUSE-SU-2021:14791-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2021:14791-1 advisory. This update for openssl fixes the following security issue: - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer...