Lucene search
Ubuntu.comUB:CVE-2011-4108HistoryJan 05, 2012 - 12:00 a.m.
CVE-2011-4108
2012-01-0500:00:00
ubuntu.com
ubuntu.com
13
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
75.9%
The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f
performs a MAC check only if certain padding is valid, which makes it
easier for remote attackers to recover plaintext via a padding oracle
attack.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | openssl | <ย 0.9.8g-4ubuntu3.15 | UNKNOWN |
| ubuntu | 10.04 | noarch | openssl | <ย 0.9.8k-7ubuntu8.8 | UNKNOWN |
| ubuntu | 10.10 | noarch | openssl | <ย 0.9.8o-1ubuntu4.6 | UNKNOWN |
| ubuntu | 11.04 | noarch | openssl | <ย 0.9.8o-5ubuntu1.2 | UNKNOWN |
| ubuntu | 11.10 | noarch | openssl | <ย 1.0.0e-2ubuntu4.2 | UNKNOWN |
| ubuntu | 11.10 | noarch | openssl098 | <ย 0.9.8o-7ubuntu1.2 | UNKNOWN |
Related
f5
f5
K15388 : OpenSSL vulnerability CVE-2011-4108
2014-08-11 00:00:00
SOL15388 - OpenSSL vulnerability CVE-2011-4108
2014-07-17 00:00:00
K15417 : OpenSSL vulnerability CVE-2012-0050
2014-08-14 00:00:00
debiancve
debiancve
veracode
veracode
Information Disclosure
2020-04-10 01:09:44
nessus
nessus
OpenSSL 0.9.8s / 1.0.0f DTLS Denial of Service
2012-01-20 00:00:00
F5 Networks BIG-IP : OpenSSL vulnerability (SOL15388)
2014-10-10 00:00:00
OpenSSL 0.9.8s / 1.0.0f DTLS DoS
2012-01-20 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2011-4108
2012-01-04 00:00:00
Vulnerability in OpenSSL CVE-2012-0050
2012-01-04 00:00:00
cve
cve
prion
prion
Design/Logic Flaw
2012-01-06 01:55:00
Sql injection
2012-01-06 01:55:00
Design/Logic Flaw
2012-01-19 19:55:00
paloalto
paloalto
OpenSSL Plain Text Recovery Attack Vulnerability
2012-04-27 23:30:00
openvas
openvas
Fedora Update for openssl FEDORA-2012-0708
2012-04-02 00:00:00
Mandriva Update for openssl MDVSA-2012:011 (openssl)
2012-02-01 00:00:00
OpenSSL: DTLS DoS Attack (20120118) - Windows
2021-08-16 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openssl-1.0.0g-1.fc16
2012-01-22 05:27:15
[SECURITY] Fedora 15 Update: openssl-1.0.0g-1.fc15
2012-01-24 07:55:34
[SECURITY] Fedora 16 Update: openssl-1.0.0f-1.fc16
2012-01-11 06:13:34
freebsd
freebsd
OpenSSL -- DTLS Denial of Service
2012-01-18 00:00:00
OpenSSL -- multiple vulnerabilities
2012-01-04 00:00:00
ubuntucve
ubuntucve
CVE-2012-0390
2012-01-06 00:00:00
CVE-2012-0050
2012-01-19 00:00:00
redhat
redhat
(RHSA-2012:0060) Moderate: openssl security update
2012-01-24 00:00:00
(RHSA-2012:0059) Moderate: openssl security update
2012-01-24 00:00:00
(RHSA-2012:1307) Important: openssl security update
2012-09-24 15:53:22
centos
centos
openssl security update
2012-01-30 20:25:59
openssl security update
2012-01-24 21:54:22
amazon
amazon
Medium: openssl
2012-02-02 14:24:00
debian
debian
[SECURITY] [DSA 2390-1] openssl security update
2012-01-15 20:23:51
aix
aix
Multiple OpenSSL vulnerabilities
2012-03-21 13:02:49
suse
suse
Security update for OpenSSL (important)
2012-01-16 17:08:28
openssl: fixing various security issues (important)
2012-01-16 17:08:14
Security update for gnutls (critical)
2014-03-04 01:04:52
oraclelinux
oraclelinux
openssl security update
2012-01-24 00:00:00
openssl security update
2012-01-24 00:00:00
openssl-fips security update
2015-04-02 00:00:00
osv
osv
openssl - several
2012-01-15 00:00:00
securityvulns
securityvulns
OpenSSL library multiple security vulnerabilities
2012-01-20 00:00:00
HP Onboard Administrator multiple security vulnerabilities
2012-06-17 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2012-03-06 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1939
2021-07-02 17:38:47
ubuntu
ubuntu
OpenSSL vulnerabilities
2012-02-09 00:00:00
cert
cert
ibm
ibm
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
75.9%
Related for UB:CVE-2011-4108