CVE-2025-68160 affecting package openssl for versions less than 1.1.1k-38

CVE-2025-68160 affecting package openssl for versions less than 1.1.1k-38. A patched version of the package is available...

CVE-2025-69419 affecting package openssl for versions less than 1.1.1k-38

CVE-2025-69419 affecting package openssl for versions less than 1.1.1k-38. A patched version of the package is available...

MiracleLinux 8 : openssl-1.1.1k-4.el8 (AXSA:2021-2623:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2623:05 advisory. openssl: integer overflow in CipherUpdate CVE-2021-23840 openssl: NULL pointer dereference in X509issuerandserialhash CVE-2021-23841 Tenable has...

CVE-2025-9230 affecting package openssl for versions less than 1.1.1k-37

CVE-2025-9230 affecting package openssl for versions less than 1.1.1k-37. A patched version of the package is available...

CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28

CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28. A patched version of the package is available...

CVE-2023-2650 affecting package openssl for versions less than 1.1.1k-25

CVE-2023-2650 affecting package openssl for versions less than 1.1.1k-25. A patched version of the package is available...

CVE-2023-0465 affecting package openssl for versions less than 1.1.1k-23

CVE-2023-0465 affecting package openssl for versions less than 1.1.1k-23. A patched version of the package is available...

SUSE CVE-2021-3450

The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an...

CVE-2023-0286 affecting package openssl for versions less than 1.1.1k-21

CVE-2023-0286 affecting package openssl for versions less than 1.1.1k-21. A patched version of the package is available...

CVE-2022-4304 affecting package openssl for versions less than 1.1.1k-21

CVE-2022-4304 affecting package openssl for versions less than 1.1.1k-21. A patched version of the package is available...

openssl security update

1:1.1.1k-7 - Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 - Update expired certificates used in the testsuite Resolves: rhbz2100554 - Fix CVE-2022-1292: openssl: crehash script allows command injection Resolves: rhbz2090371 - Fix CVE-2022-2068: the...

CVE-2022-0778 affecting package openssl for versions less than 1.1.1k-12

CVE-2022-0778 affecting package openssl for versions less than 1.1.1k-12. A patched version of the package is available...

openssl security update

1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...

openssl security update

1:1.1.1k-5 - CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings - Resolves: rhbz2005400...

Certificate check bypass in openssl-src

The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an...

ALPINE-CVE-2021-3450

The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an...

EUVD-2021-1628

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension where it was present in the initial ClientHello, but includes a signaturealgorithmscert extension then a NU...

UBUNTU-CVE-2021-3450

The X509VFLAGX509STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an...