logo
DATABASE RESOURCES PRICING ABOUT US

OpenSSL vulnerabilities

Description

David Benjamin discovered that OpenSSL incorrectly handled comparing certificates containing a EDIPartyName name type. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. (CVE-2020-1971) Tavis Ormandy discovered that OpenSSL incorrectly handled parsing issuer fields. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. (CVE-2021-23841)


Affected Package


OS OS Version Package Name Package Version
Ubuntu 14.04 libssl1.0.0 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libcrypto1.0.0-udeb 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libcrypto1.0.0-udeb-dbgsym 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl-dev 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl-dev-dbgsym 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl-doc 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl1.0.0-dbg 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl1.0.0-dbgsym 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl1.0.0-udeb 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 libssl1.0.0-udeb-dbgsym 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 openssl 1.0.1f-1ubuntu2.27+esm2
Ubuntu 14.04 openssl-dbgsym 1.0.1f-1ubuntu2.27+esm2
Ubuntu 12.04 libssl1.0.0 1.0.1-4ubuntu5.45

Related