Lucene search
RootSSV:2066HistoryAug 03, 2007 - 12:00 a.m.
OpenSSL本地密钥信息泄露漏洞
2007-08-0300:00:00
Root
www.seebug.org
18
0.0004 Low
EPSS
Percentile
12.9%
BUGTRAQ ID: 25163
CVE(CAN) ID: CVE-2007-3108
OpenSSL是一种开放源码的SSL实现,用来实现网络通信的高强度加密,现在被广泛地用于各种网络应用程序中。
某些RSA的实现上存在可重建密钥的漏洞,OpenSSL基于SSLeay,提供RSA算法的加密支持,本地攻击者可能利用此漏洞通过RSA算法解密加密信息的内容。
多种使用了OpenSSL的产品可能受此漏洞影响。
OpenSSL Project OpenSSL 0.9.8e
OpenSSL Project OpenSSL 0.9.8d
OpenSSL Project OpenSSL 0.9.8c
OpenSSL Project OpenSSL 0.9.8b
OpenSSL Project OpenSSL 0.9.8a
OpenSSL Project OpenSSL 0.9.8
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://openssl.org/news/patch-CVE-2007-3108.txt” target=“_blank”>http://openssl.org/news/patch-CVE-2007-3108.txt</a>
Related
securityvulns
securityvulns
rPSA-2007-0155-1 openssl openssl-scripts
2007-08-13 00:00:00
OpenSSL cryptographic vulnerability
2007-08-13 00:00:00
prion
prion
Design/Logic Flaw
2007-08-08 01:17:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 0.9.8d-alt3
2007-08-07 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8d-alt3
2007-08-07 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 0.9.8d-alt3
2007-08-07 00:00:00
cve
cve
CVE-2007-3108
2007-08-08 01:17:00
checkpoint_security
checkpoint_security
Check Point response to OpenSSL vulnerability CVE-2007-3108
2007-10-16 22:00:00
openvas
openvas
Fedora Update for openssl FEDORA-2007-1444
2009-02-27 00:00:00
Fedora Update for openssl FEDORA-2007-661
2009-02-27 00:00:00
Fedora Update for openssl FEDORA-2007-1444
2009-02-27 00:00:00
nessus
nessus
Fedora 7 : openssl-0.9.8b-14.fc7 (2007-1444)
2007-11-06 00:00:00
Fedora Core 6 : openssl-0.9.8b-14.fc6 (2007-661)
2007-08-21 00:00:00
F5 Networks BIG-IP : OpenSSL vulnerability (SOL8108)
2014-10-10 00:00:00
debiancve
debiancve
CVE-2007-3108
2007-08-08 01:17:00
fedora
fedora
[SECURITY] Fedora 7 Update: openssl-0.9.8b-14.fc7
2007-08-06 17:57:54
[SECURITY] Fedora Core 6 Update: openssl-0.9.8b-14.fc6
2007-08-13 21:49:38
[SECURITY] Fedora 7 Update: openssl-0.9.8b-15.fc7
2007-10-18 02:26:18
cert
cert
RSA key reconstruction vulnerability
2007-08-01 00:00:00
f5
f5
K8108 : OpenSSL vulnerability CVE-2007-3108
2013-03-18 00:00:00
SOL8108 - OpenSSL vulnerability CVE-2007-3108
2007-11-18 00:00:00
ubuntucve
ubuntucve
CVE-2007-3108
2007-08-07 00:00:00
redhat
redhat
(RHSA-2007:0813) Moderate: openssl security update
2007-10-22 00:00:00
(RHSA-2007:1003) Moderate: openssl security and bug fix update
2007-11-15 00:00:00
(RHSA-2007:0964) Important: openssl security update
2007-10-12 00:00:00
oraclelinux
oraclelinux
openssl security and bug fix update
2007-11-27 00:00:00
Moderate: openssl security update
2007-10-22 00:00:00
Important: openssl security update
2007-10-12 00:00:00
centos
centos
openssl security update
2007-10-23 23:23:09
openssl security update
2007-11-15 15:53:13
openssl security update
2007-10-22 12:29:21
ubuntu
ubuntu
openssl vulnerabilities
2007-09-28 00:00:00
osv
osv
openssl - predictable random number generator
2008-05-13 00:00:00
debian
debian
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2007-10-07 00:00:00
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
vmware
vmware
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
Updated service console patches.
2008-01-07 00:00:00
lenovo
lenovo
Intel® PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
Intel® PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51