Information on source package openssl1.0

Available versions

ReleaseVersion
stretch1.0.2u-1~deb9u10
stretch (security)1.0.2u-1~deb9u7

Open issues

BugstretchDescription
CVE-2024-9143vulnerable (no DSA, ignored)Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with u ...
CVE-2024-5535vulnerable (no DSA, ignored)Issue summary: Calling the OpenSSL API function SSL_select_next_proto ...
CVE-2022-4304vulnerable (no DSA, ignored)A timing based side channel exists in the OpenSSL RSA Decryption imple ...
CVE-2021-4160vulnerable (no DSA, ignored)There is a carry propagation bug in the MIPS32 and MIPS64 squaring pro ...

Resolved issues

BugDescription
CVE-2024-6119Issue summary: Applications performing certificate name checks (e.g., ...
CVE-2024-4741Issue summary: Calling the OpenSSL API function SSL_free_buffers may c ...
CVE-2024-4603Issue summary: Checking excessively long DSA keys or parameters may be ...
CVE-2024-2511Issue summary: Some non-default TLS server configurations can cause un ...
CVE-2024-0727Issue summary: Processing a maliciously formatted PKCS12 file may lead ...
CVE-2023-6237Issue summary: Checking excessively long invalid RSA public keys may t ...
CVE-2023-6129Issue summary: The POLY1305 MAC (message authentication code) implemen ...
CVE-2023-5678Issue summary: Generating excessively long X9.42 DH keys or checking e ...
CVE-2023-5363Issue summary: A bug has been identified in the processing of key and ...
CVE-2023-4807Issue summary: The POLY1305 MAC (message authentication code) implemen ...
CVE-2023-3817Issue summary: Checking excessively long DH keys or parameters may be ...
CVE-2023-3446Issue summary: Checking excessively long DH keys or parameters may be ...
CVE-2023-2975Issue summary: The AES-SIV cipher implementation contains a bug that c ...
CVE-2023-2650Issue summary: Processing some specially crafted ASN.1 object identifi ...
CVE-2023-1255Issue summary: The AES-XTS cipher decryption implementation for 64 bit ...
CVE-2023-0466The function X509_VERIFY_PARAM_add0_policy() is documented to implicit ...
CVE-2023-0465Applications that use a non-default option when verifying certificates ...
CVE-2023-0464A security vulnerability has been identified in all supported versions ...
CVE-2023-0401A NULL pointer can be dereferenced when signatures are being verified ...
CVE-2023-0286There is a type confusion vulnerability relating to X.400 address proc ...
CVE-2023-0217An invalid pointer dereference on read can be triggered when an applic ...
CVE-2023-0216An invalid pointer dereference on read can be triggered when an applic ...
CVE-2023-0215The public API function BIO_new_NDEF is a helper function used for str ...
CVE-2022-4450The function PEM_read_bio_ex() reads a PEM file from a BIO and parses ...
CVE-2022-4203A read buffer overrun can be triggered in X.509 certificate verificati ...
CVE-2022-3996If an X.509 certificate contains a malformed policy constraint and pol ...
CVE-2022-3786A buffer overrun can be triggered in X.509 certificate verification, s ...
CVE-2022-3602A buffer overrun can be triggered in X.509 certificate verification, s ...
CVE-2022-3358OpenSSL supports creating a custom cipher via the legacy EVP_CIPHER_me ...
CVE-2022-2274The OpenSSL 3.0.4 release introduced a serious bug in the RSA implemen ...
CVE-2022-2097AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimi ...
CVE-2022-2068In addition to the c_rehash shell command injection identified in CVE- ...
CVE-2022-1473The OPENSSL_LH_flush() function, which empties a hash table, contains ...
CVE-2022-1434The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly ...
CVE-2022-1343The function `OCSP_basic_verify` verifies the signer certificate on an ...
CVE-2022-1292The c_rehash script does not properly sanitise shell metacharacters to ...
CVE-2022-0778The BN_mod_sqrt() function, which computes a modular square root, cont ...
CVE-2021-23841The OpenSSL public API function X509_issuer_and_serial_hash() attempts ...
CVE-2021-23840Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may ...
CVE-2021-23839OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 ...
CVE-2021-4044Internally libssl in OpenSSL calls X509_verify_cert() on the client si ...
CVE-2021-3712ASN.1 strings are represented internally within OpenSSL as an ASN1_STR ...
CVE-2021-3711In order to decrypt SM2 encrypted data an application is expected to c ...
CVE-2021-3450The X509_V_FLAG_X509_STRICT flag enables additional security checks of ...
CVE-2021-3449An OpenSSL TLS server may crash if sent a maliciously crafted renegoti ...
CVE-2020-1971The X.509 GeneralName type is a generic type for representing differen ...
CVE-2020-1968The Raccoon attack exploits a flaw in the TLS specification which can ...
CVE-2020-1967Server or client applications that call the SSL_check_chain() function ...
CVE-2019-1563In situations where an attacker receives automated notification of the ...
CVE-2019-1559If an application encounters a fatal protocol error and then calls SSL ...
CVE-2019-1552OpenSSL has internal defaults for a directory tree where it can find a ...
CVE-2019-1551There is an overflow bug in the x64_64 Montgomery squaring procedure u ...
CVE-2019-1549OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). Th ...
CVE-2019-1547Normally in OpenSSL EC groups always have a co-factor present and this ...
CVE-2019-1543ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input ...
CVE-2018-5407Simultaneous Multi-threading (SMT) in processors can enable local user ...
CVE-2018-0739Constructed ASN.1 types with a recursive definition (such as can be fo ...
CVE-2018-0737The OpenSSL RSA Key generation algorithm has been shown to be vulnerab ...
CVE-2018-0735The OpenSSL ECDSA signature algorithm has been shown to be vulnerable ...
CVE-2018-0734The OpenSSL DSA signature algorithm has been shown to be vulnerable to ...
CVE-2018-0733Because of an implementation bug the PA-RISC CRYPTO_memcmp function is ...
CVE-2018-0732During key agreement in a TLS handshake using a DH(E) based ciphersuit ...
CVE-2017-3738There is an overflow bug in the AVX2 Montgomery multiplication procedu ...
CVE-2017-3737OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an "error stat ...
CVE-2017-3736There is a carry propagating bug in the x86_64 Montgomery squaring pro ...
CVE-2017-3735While parsing an IPAddressFamily extension in an X.509 certificate, it ...
CVE-2017-3733During a renegotiation handshake if the Encrypt-Then-Mac extension is ...
CVE-2017-3732There is a carry propagating bug in the x86_64 Montgomery squaring pro ...
CVE-2017-3731If an SSL/TLS server or client is running on a 32-bit host, and a spec ...
CVE-2017-3730In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad par ...
CVE-2016-7056A timing attack flaw was found in OpenSSL 1.0.1u and before that could ...
CVE-2016-7055There is a carry propagating bug in the Broadwell-specific Montgomery ...
CVE-2016-7054In OpenSSL 1.1.0 before 1.1.0c, TLS connections using *-CHACHA20-POLY1 ...
CVE-2016-7053In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS struc ...

Security announcements

DSA / DLADescription
ELA-1264-1openssl1.0 - security update
ELA-966-1openssl1.0 - security update
ELA-932-1openssl1.0 - security update
DLA-2953-1openssl1.0 - security update
DLA-2774-1openssl1.0 - security update
DLA-2761-1openssl1.0 - security update
DLA-2565-1openssl1.0 - security update
DLA-2493-1openssl1.0 - security update
DLA-2378-1openssl1.0 - security update
DSA-4594-1openssl1.0 - security update
DSA-4540-1openssl1.0 - security update
DSA-4400-1openssl1.0 - security update
DSA-4355-1openssl1.0 - security update
DSA-4158-1openssl1.0 - security update
DSA-4065-1openssl1.0 - security update
DSA-4017-1openssl1.0 - security update

Search for package or bug name: Reporting problems