openssl

298 tracked vulnerabilities.

CVE-2009-1387
OpenSSL < 0.9.8m - Denial of Service via DTLS Handshake Fragment Bug
Jun 04, 2009
EPSS 0.10
CVE-2009-1386
OpenSSL < 0.9.8i - Denial of Service via DTLS ChangeCipherSpec Packet
Jun 04, 2009
EPSS 0.80
CVE-2009-1379
OpenSSL 1.0.0 Beta 2 - Use-After-Free in DTLS Fragment Retrieval
May 19, 2009
EPSS 0.18
CVE-2009-1378
OpenSSL 0.9.8-0.9.8k - Denial of Service via DTLS Fragment Handling Memory Leak
May 19, 2009
EPSS 0.13
CVE-2009-1377
OpenSSL 0.9.8-0.9.8m - Denial of Service via DTLS Record Buffer Overflow
May 19, 2009
EPSS 0.11
CVE-2009-0789
OpenSSL < 0.9.8k - Denial of Service via Malformed ASN.1 Structure in Certificate Public Key
Mar 27, 2009
EPSS 0.03
CVE-2009-0591
OpenSSL 0.9.8h-0.9.8j - Signature Repudiation via Malformed CMS Signed Attributes
Mar 27, 2009
EPSS 0.03
CVE-2009-0590
OpenSSL < 0.9.8k - Denial of Service via ASN1_STRING_print_ex Invalid Memory Access
Mar 27, 2009
EPSS 0.06
CVE-2009-0653
OpenSSL - Improper Certificate Validation via Missing Basic Constraints Check
Feb 20, 2009
EPSS 0.01
CVE-2008-7270
OpenSSL < 0.9.8j - Remote Cipher Downgrade via Session Cache Manipulation
Dec 06, 2010
EPSS 0.03
CVE-2008-5077
OpenSSL < 0.9.8h - Certificate Chain Validation Bypass via Malformed SSL/TLS Signature
Jan 07, 2009
EPSS 0.05
CVE-2008-1678
OpenSSL 0.9.8f-0.9.8h - Memory Leak in zlib_stateful_init
Jul 10, 2008
EPSS 0.05
CVE-2008-0891
OpenSSL 0.9.8f and 0.9.8g - Denial of Service via Malformed Client Hello Packet
May 29, 2008
EPSS 0.05
CVE-2008-1672
OpenSSL 0.9.8f and 0.9.8g - Denial of Service via NULL Pointer Dereference
May 29, 2008
EPSS 0.05
CVE-2008-0166 HIGH
OpenSSL <0.9.8g-9 - Info Disclosure
May 13, 2008
CVSS 7.5
EPSS 0.71
CVE-2007-5502
OpenSSL FIPS Object Module 1.1.1 - Predictable Random Data Generation
Dec 01, 2007
EPSS 0.02
CVE-2007-4995
OpenSSL 0.9.8 - Remote Code Execution via DTLS Off-by-One Error
Oct 13, 2007
EPSS 0.11
CVE-2007-5135
OpenSSL 0.9.7-0.9.7l and 0.9.8-0.9.8f - Remote Code Execution via SSL_get_shared_ciphers Buffer Underflow
Sep 27, 2007
EPSS 0.16
CVE-2007-3108
OpenSSL < 0.9.8e - RSA Private Key Exposure via Montgomery Multiplication Side-Channel
Aug 08, 2007
EPSS 0.00
CVE-2006-7250
OpenSSL < 0.9.8t - Denial of Service via Crafted S/MIME Message
Feb 29, 2012
EPSS 0.07
CVE-2006-2937
OpenSSL 0.9.7-0.9.7k and 0.9.8-0.9.8c - Denial of Service via Malformed ASN.1 Structures
Sep 28, 2006
EPSS 0.11
CVE-2006-2940
OpenSSL 0.9.7-0.9.7k and 0.9.8-0.9.8c - Denial of Service via Large RSA Public Key Parameters
Sep 28, 2006
EPSS 0.05
CVE-2006-3738
OpenSSL 0.9.7-0.9.7k and 0.9.8-0.9.8c - Buffer Overflow via Long Cipher List
Sep 28, 2006
EPSS 0.49
CVE-2006-4343
OpenSSL 0.9.7-0.9.7k and 0.9.8-0.9.8c - Denial of Service via Null Pointer Dereference in SSLv2 Client
Sep 28, 2006
EPSS 0.17
CVE-2006-4339
OpenSSL < 0.9.7 - PKCS #1 v1.5 Signature Forgery via RSA Key with Exponent 3
Sep 05, 2006
EPSS 0.05