The OpenSSL Project

Short Name: [None Entered]
Previous Names: [None Entered]
URL: [None Entered]
Email: [None Entered]
Security URL: [None Entered]
Security Email: [None Entered]
Knowledge Base: [None Entered]
Notes: [No Notes]

Full Details...

Vulnerabilities by Vendor Product

The OpenSSL Project

The OpenSSL Project
OpenSSL Watch-list
0.9.7
OSVDB ID: 29260 OpenSSL Malformed ASN.1 Structure Resource Consumption DoS
OSVDB ID: 29261 OpenSSL Crafted Public Key CPU Consumption DoS
OSVDB ID: 29263 OpenSSL SSLv2 get_server_hello Function Remote DoS
OSVDB ID: 29262 OpenSSL SSL_get_shared_ciphers Function Unspecified Remote Overflow
0.9.8
OSVDB ID: 29260 OpenSSL Malformed ASN.1 Structure Resource Consumption DoS
OSVDB ID: 29261 OpenSSL Crafted Public Key CPU Consumption DoS
OSVDB ID: 29263 OpenSSL SSLv2 get_server_hello Function Remote DoS
OSVDB ID: 29262 OpenSSL SSL_get_shared_ciphers Function Unspecified Remote Overflow
1.0.0
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
1.0.1
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8f
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8g
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8h
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8i
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8j
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8k
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8l
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8m
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8n
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8o
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow
0.9.8p
OSVDB ID: 69657 OpenSSL J-PAKE Public Parameter Validation Shared Secret Authentication Bypass
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
1.0.0b
OSVDB ID: 69657 OpenSSL J-PAKE Public Parameter Validation Shared Secret Authentication Bypass
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
0.9.8q
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
1.0.0c
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
1.0.0a
OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access
Unspecified
OSVDB ID: 71845 OpenSSL FIPS Mode Diffie-Hellman Key Exchange Predictable Secret MiTM Weakness
1.0.0f
OSVDB ID: 78320 OpenSSL DTLS Remote DoS
0.9.8s
OSVDB ID: 78320 OpenSSL DTLS Remote DoS



The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2012 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use