Fedora 43 : openssl (2026-47fffff581)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-47fffff581 advisory. Backport security patches from OpenSSL 3.5.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

PT-2025-30596 · Openssl +1 · Openssl +1

Name of the Vulnerable Software and Affected Versions: AWS Client VPN versions 4.1.0 through 5.2.1 Description: A high-severity vulnerability exists in AWS Client VPN for Windows that allows local privilege escalation. During the client installation process, the software references the directory...

DLA-4176-1 openssl - security update

Bulletin has no description...

[SECURITY] Fedora 41 Update: rust-openssl-0.10.72-1.fc41

OpenSSL bindings...

RockyLinux 9 : openssl (RLSA-2025:1330)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:1330 advisory. openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797 Tenable has extracted the preceding description block directly fro...

Fedora 40 : openssl (2025-becf280371)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-becf280371 advisory. Rebase to 3.2.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 41 : openssl (2025-e0e44b1b98)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e0e44b1b98 advisory. Rebase to 3.2.4, fix CVE-2024-12797 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has no...

AlmaLinux 9 : openssl (ALSA-2025:1330)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:1330 advisory. openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797 Tenable has extracted the preceding description block directly from...

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...

Fedora 41 : clevis-pin-tpm2 / dbus-parsec / envision / fido-device-onboard / etc (2025-f8be7978e3)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-f8be7978e3 advisory. Update the openssl crate to version 0.10.70 and the openssl-sys crate to version 0.9.105. This includes a fix for RUSTSEC-2025-0004 / CVE-2025-0977 and...

SUSE-SU-2025:0349-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136...

edk2 security update

20231122-6.0.1.el94.4 - Replace upstream references Orabug:36569119 20231122-6.el94.4 - edk2-Bumped-openssl-submodule-version-to-0205b5898872.patch RHEL-55337 - Resolves: RHEL-55337 CVE-2024-6119 edk2/openssl: Possible denial of service in X.509 name checks rhel-9.4.z...

Low: openssl11

Issue Overview: No CVE associated with this advisory Affected Packages: openssl11 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update openssl11 or yum update...

SUSE-SU-2024:0832-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file bsc1219243...

Low: openssl

Issue Overview: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack The package openssl098e is provided purely for binary compatibility with older Amazon Linux versions. It does not receive security updates. CVE-2024-0727 Affect...

SUSE-SU-2023:3338-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. bsc1213853...

SUSE-SU-2023:3308-1 Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. bsc1213853...

SUSE-SU-2023:3291-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. bsc1213853...

SUSE-SU-2023:2965-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...

SUSE-SU-2023:2962-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2023-3446: Fixed DHcheck excessive time with over sized modulus bsc1213487...