Vendor Dictionary: The OpenSSL Project

The OpenSSL Project

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

The OpenSSL Project

The OpenSSL Project

OpenSSL: 0.9.7; OSVDB ID: 29260 OpenSSL Malformed ASN.1 Structure Resource Consumption DoS; OSVDB ID: 29261 OpenSSL Crafted Public Key CPU Consumption DoS; OSVDB ID: 29263 OpenSSL SSLv2 get_server_hello Function Remote DoS; OSVDB ID: 29262 OpenSSL SSL_get_shared_ciphers Function Unspecified Remote Overflow; 0.9.8; OSVDB ID: 29260 OpenSSL Malformed ASN.1 Structure Resource Consumption DoS; OSVDB ID: 29261 OpenSSL Crafted Public Key CPU Consumption DoS; OSVDB ID: 29263 OpenSSL SSLv2 get_server_hello Function Remote DoS; OSVDB ID: 29262 OpenSSL SSL_get_shared_ciphers Function Unspecified Remote Overflow; 1.0.0; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 1.0.1; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8f; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8g; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8h; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8i; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8j; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8k; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8l; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8m; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8n; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8o; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; OSVDB ID: 69265 OpenSSL TLS Server ssl/t1_lib.c Extension Parsing Race Condition Overflow; 0.9.8p; OSVDB ID: 69657 OpenSSL J-PAKE Public Parameter Validation Shared Secret Authentication Bypass; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; 1.0.0b; OSVDB ID: 69657 OpenSSL J-PAKE Public Parameter Validation Shared Secret Authentication Bypass; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; 0.9.8q; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; 1.0.0c; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; 1.0.0a; OSVDB ID: 70847 OpenSSL ClientHello Handshake Message Parsing Invalid Memory Access; Unspecified; OSVDB ID: 71845 OpenSSL FIPS Mode Diffie-Hellman Key Exchange Predictable Secret MiTM Weakness; 1.0.0f; OSVDB ID: 78320 OpenSSL DTLS Remote DoS; 0.9.8s; OSVDB ID: 78320 OpenSSL DTLS Remote DoS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.