Lucene search

K
ubuntuUbuntuUSN-1029-1
HistoryDec 08, 2010 - 12:00 a.m.

OpenSSL vulnerabilities

2010-12-0800:00:00
ubuntu.com
32

9.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.4%

Releases

  • Ubuntu 10.10
  • Ubuntu 10.04
  • Ubuntu 9.10
  • Ubuntu 8.04
  • Ubuntu 6.06

Packages

  • openssl -

Details

It was discovered that an old bug workaround in the SSL/TLS
server code allowed an attacker to modify the stored session cache
ciphersuite. This could possibly allow an attacker to downgrade the
ciphersuite to a weaker one on subsequent connections. (CVE-2010-4180)

It was discovered that an old bug workaround in the SSL/TLS
server code allowed an attacker to modify the stored session cache
ciphersuite. An attacker could possibly take advantage of this to
force the use of a disabled cipher. This vulnerability only affects
the versions of OpenSSL in Ubuntu 6.06 LTS, Ubuntu 8.04 LTS, and
Ubuntu 9.10. (CVE-2008-7270)

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchlibssl0.9.8<Ā 0.9.8g-16ubuntu3.5UNKNOWN
Ubuntu9.10noarchlibcrypto0.9.8-udeb<Ā 0.9.8g-16ubuntu3.5UNKNOWN
Ubuntu9.10noarchlibssl-dev<Ā 0.9.8g-16ubuntu3.5UNKNOWN
Ubuntu9.10noarchlibssl0.9.8-dbg<Ā 0.9.8g-16ubuntu3.5UNKNOWN
Ubuntu9.10noarchopenssl<Ā 0.9.8g-16ubuntu3.5UNKNOWN
Ubuntu8.04noarchlibssl0.9.8<Ā 0.9.8g-4ubuntu3.13UNKNOWN
Ubuntu8.04noarchlibcrypto0.9.8-udeb<Ā 0.9.8g-4ubuntu3.13UNKNOWN
Ubuntu8.04noarchlibssl-dev<Ā 0.9.8g-4ubuntu3.13UNKNOWN
Ubuntu8.04noarchlibssl0.9.8-dbg<Ā 0.9.8g-4ubuntu3.13UNKNOWN
Ubuntu8.04noarchopenssl<Ā 0.9.8g-4ubuntu3.13UNKNOWN
Rows per page:
1-10 of 271

9.3 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.4%