SUSE CVE-2011-4577

🗓️ 15 Feb 2023 05:49:53Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

SUSE CVE-2011-4577: OpenSSL with RFC 3779 support can be DoS'd by certs listing IP blocks or autonomous system identifiers.

Reporter	Title	Published	Views	Family All 135
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Express for UNIX is affected by multiple vulnerabilities in OpenSSL	24 Jul 202022:49	–	ibm
IBM Security Bulletins	Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL versions prior to 1.0.0	25 Sep 202223:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Enterprise for UNIX is affected by multiple vulnerabilities in OpenSSL	25 Sep 202220:45	–	ibm
IBM Security Bulletins	Security Bulletin: Storage HMC OpenSSL upgrade to address cryptographic vulnerabilities.	18 Jun 201800:07	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling B2B Integrator and IBM Sterling File Gateway are affected by multiple vulnerabilities in OpenSSL	25 Sep 202223:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Balanced Warehouse C3000, C4000 and D5100 and IBM Smart Analytics System 1050, 2050, 5600 and 5710 are affected by vulnerabilities in OpenSSL	25 Sep 202223:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Tivoli Netcool System Service Monitors/Application Service Monitors is affected by multiple OpenSSL vulnerabilities	26 Sep 202205:45	–	ibm
Tenable Nessus	OpenSSL 0.9.8 < 0.9.8s / 1.x < 1.0.0f Multiple Vulnerabilities	5 Jan 201200:00	–	nessus
Tenable Nessus	Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)	5 Jun 201300:00	–	nessus
Tenable Nessus	Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)	5 Jun 201300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Server	15	any	libopenssl-1_0_0-devel	1.0.2n-1.32	libopenssl-1_0_0-devel-1.0.2n-1.32.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15	any	libopenssl-1_0_0-devel	1.0.2n-1.32	libopenssl-1_0_0-devel-1.0.2n-1.32.noarch.rpm
SUSE Linux Enterprise Desktop	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12.4	any	libopenssl-1_0_0-devel	1.0.2p-2.11	libopenssl-1_0_0-devel-1.0.2p-2.11.noarch.rpm
SUSE Linux Enterprise Server	12.5	any	libopenssl-1_0_0-devel	1.0.2p-3.11.1	libopenssl-1_0_0-devel-1.0.2p-3.11.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12.5	any	libopenssl-1_0_0-devel	1.0.2p-3.11.1	libopenssl-1_0_0-devel-1.0.2p-3.11.1.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	libopenssl-1_0_0-devel	1.0.2p-3.14.2	libopenssl-1_0_0-devel-1.0.2p-3.14.2.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15.1	any	libopenssl-1_0_0-devel	1.0.2p-3.14.2	libopenssl-1_0_0-devel-1.0.2p-3.14.2.noarch.rpm
SUSE Linux Enterprise Desktop	15	any	libopenssl-1_1-devel	1.1.0h-2.3	libopenssl-1_1-devel-1.1.0h-2.3.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2011-4577
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/739719
bugzilla	www.bugzilla.suse.com/758060
bugzilla	www.bugzilla.suse.com/854391
lists	www.lists.suse.com/pipermail/sle-updates/2022-February/021715.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/EJO5JSTLK74QGZONZRRN7QOA225OOZHB/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/5YVDCDFBILCKBYNJ5TMSAX2DCLYPN47R/

01 Jan 2026 02:55Current

8.5High risk

Vulners AI Score8.5

CVSS 24.3

EPSS0.02787

openssl vulnerability certificate extension ip address blocks autonomous system identifiers denial of service suse