Lucene search
UbuntuUSN-6986-1HistorySep 03, 2024 - 12:00 a.m.
OpenSSL vulnerability
2024-09-0300:00:00
ubuntu.com
36
openssl
x.509 certificate
ubuntu 24.04 lts
ubuntu 22.04 lts
denial of service
sensitive information
vulnerability
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.4
Confidence
Low
Releases
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
Packages
- openssl - Secure Socket Layer (SSL) cryptographic library and tools
Details
David Benjamin discovered that OpenSSL incorrectly handled certain
X.509 certificates. An attacker could possible use this issue to
cause a denial of service or expose sensitive information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 24.04 | noarch | libssl3t64 | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libssl-dev | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libssl-doc | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 24.04 | noarch | libssl3t64-dbgsym | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 24.04 | noarch | openssl | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 24.04 | noarch | openssl-dbgsym | < 3.0.13-0ubuntu3.4 | UNKNOWN |
| Ubuntu | 22.04 | noarch | libssl3 | < 3.0.2-0ubuntu1.18 | UNKNOWN |
| Ubuntu | 22.04 | noarch | libssl-dev | < 3.0.2-0ubuntu1.18 | UNKNOWN |
| Ubuntu | 22.04 | noarch | libssl-doc | < 3.0.2-0ubuntu1.18 | UNKNOWN |
| Ubuntu | 22.04 | noarch | libssl3-dbgsym | < 3.0.2-0ubuntu1.18 | UNKNOWN |
References
Related
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-3 (SUSE-SU-2024:3106-1)
2024-09-04 00:00:00
Debian dsa-5764 : libcrypto3-udeb - security update
2024-09-03 00:00:00
SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2024:3107-1)
2024-09-04 00:00:00
alpinelinux
alpinelinux
CVE-2024-6119
2024-09-03 16:15:07
debiancve
debiancve
CVE-2024-6119
2024-09-03 16:15:07
osv
osv
CVE-2024-6119
2024-09-03 16:15:07
Security update for openssl-3
2024-09-03 15:01:25
Security update for openssl-3
2024-09-03 15:00:41
mageia
mageia
Updated openssl packages fix security vulnerability
2024-09-10 19:40:31
openvas
openvas
openSUSE: Security Advisory for openssl (SUSE-SU-2024:3105-1)
2024-09-06 00:00:00
Mageia: Security Advisory (MGASA-2024-0291)
2024-09-11 00:00:00
Ubuntu: Security Advisory (USN-6986-1)
2024-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2024-6119
2024-09-03 00:00:00
cvelist
cvelist
CVE-2024-6119 Possible denial of service in X.509 name checks
2024-09-03 15:58:06
wolfi
wolfi
CVE-2024-6119 vulnerabilities
2024-09-19 09:11:50
vulnrichment
vulnrichment
CVE-2024-6119 Possible denial of service in X.509 name checks
2024-09-03 15:58:06
freebsd_advisory
freebsd_advisory
FreeBSD-SA-24:13.openssl
2024-09-04 00:00:00
cve
cve
CVE-2024-6119
2024-09-03 16:15:07
redhatcve
redhatcve
CVE-2024-6119
2024-09-04 12:11:04
nvd
nvd
CVE-2024-6119
2024-09-03 16:15:07
paloalto
paloalto
photon
photon
Important Photon OS Security Update - PHSA-2024-4.0-0684
2024-09-05 00:00:00
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2024-09-03 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.4
Confidence
Low
Related for USN-6986-1