Libressl Security Vulnerabilities and Issues — Libressl CVE List

Lucene search

OpenbsdLibressl

3 matches found

CVE•added 2023/06/16 8:15 p.m.•365 views

CVE-2023-35784

A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before errata 004, and in LibreSSL before 3.6.3 and 3.7.x before 3.7.3. NOTE: OpenSSL is not affected.

9.8CVSS9.4AI score0.00107EPSS

CVE•added 2023/04/12 5:15 a.m.•58 views

CVE-2022-48437

An issue was discovered in x509/x509_verify.c in LibreSSL before 3.6.1, and in OpenBSD before 7.2 errata 001. x509_verify_ctx_add_chain does not store errors that occur during leaf certificate verification, and therefore an incorrect error is returned. This behavior occurs when there is an installe...

5.3CVSS5.2AI score0.00071EPSS

CVE•added 2023/04/15 12:15 a.m.•52 views

CVE-2021-46880

x509/x509_verify.c in LibreSSL before 3.4.2, and OpenBSD before 7.0 errata 006, allows authentication bypass because an error for an unverified certificate chain is sometimes discarded.

9.8CVSS9.6AI score0.00031EPSS