CRITICAL9.8CVE-2022-3602X.509 Email Address 4-byte Buffer Overflow from 0, < 3.0.7-r0
from 0, < 1.1.1l-r0
CRITICAL9.1CVE-2022-4203X.509 Name Constraints Read Buffer Overflow from 0, < 3.0.8-r0
HIGH7.8Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applic…
from 0, < 0
HIGH7.5openssl - security update
from 0, < 3.0.8-r1
HIGH7.5Use-after-free following `BIO_new_NDEF`
from 0, < 3.0.8-r0
HIGH7.5Invalid pointer dereference in `d2i_PKCS7` functions
from 0, < 3.0.8-r0
HIGH7.5Double free after calling `PEM_read_bio_ex`
from 0, < 3.0.8-r0
HIGH7.5`NULL` dereference validating DSA public key
from 0, < 3.0.8-r0
HIGH7.5`NULL` dereference during PKCS7 data verification
from 0, < 3.0.8-r0
HIGH7.5Denial of service by double-checked locking in openssl-src
from 0, < 3.0.8-r0
HIGH7.5X.509 Email Address Variable Length Buffer Overflow
from 0, < 3.0.7-r0
HIGH7.5Using a Custom Cipher with `NID_undef` may lead to NULL encryption
from 0, < 3.0.6-r0
HIGH7.5openssl - security update
from 0, < 3.0.5-r0
HIGH7.5Resource leakage when decoding certificates and keys
from 0, < 3.0.3-r0
HIGH7.5openssl1.0 - security update
from 0, < 3.0.2-r0
HIGH7.5Invalid handling of `X509_verify_cert()` internal errors in libssl
from 0, < 3.0.2-r0
HIGH7.5openssl1.0 - security update
from 0, < 1.1.1j-r0
HIGH7.5openssl - security update
from 0, < 1.1.1g-r0
HIGH7.4X.400 address type confusion in X.509 `GeneralName`
from 0, < 3.0.8-r0
HIGH7.4openssl1.0 - security update
from 0, < 1.1.1l-r0
HIGH7.4CA certificate check bypass with X509_V_FLAG_X509_STRICT
from 0, < 1.1.1k-r0
HIGH7.4openssl - security update
from 0, < 1.1.1b-r1
HIGH7.3openssl - security update
from 0, < 0
HIGH7.3openssl - security update
from 0, < 0
MEDIUM6.5Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow.
from 0, < 3.0.9-r0
MEDIUM5.9Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the inp…
from 0, < 3.0.8-r3
MEDIUM5.9Timing Oracle in RSA Decryption
from 0, < 3.0.8-r0
MEDIUM5.9Incorrect MAC key used in the RC4-MD5 ciphersuite
from 0, < 3.0.3-r0
MEDIUM5.9openssl - security update
from 0, < 1.1.1k-r0
MEDIUM5.9Null pointer deref in `X509_issuer_and_serial_hash()`
from 0, < 1.1.1j-r0
MEDIUM5.9openssl - security update
from 0, < 1.1.1i-r0
MEDIUM5.9The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack.
from 0, < 1.1.1a-r0
MEDIUM5.9openssl - security update
from 0, < 1.1.1a-r0
MEDIUM5.3Issue summary: Checking excessively long DH keys or parameters may be very slow.
from 0, < 3.0.11-r0
MEDIUM5.3openssl - security update
from 0, < 3.0.9-r2
MEDIUM5.3Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenti…
from 0, < 3.0.9-r1
MEDIUM5.3Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent cer…
from 0, < 3.0.8-r2
MEDIUM5.3`OCSP_basic_verify` may incorrectly verify the response signing certificate
from 0, < 3.0.3-r0
MEDIUM5.3openssl - security update
from 0, < 1.1.1d-r3
MEDIUM5.3OpenSSL 1.1.1 introduced a rewritten random number generator (RNG).
from 0, < 1.1.1d-r1
MEDIUM4.7openssl1.0 - security update
from 0, < 1.1.1d-r1
LOW3.7OpenSSL 1.0.2 supports SSLv2.
from 0, < 1.1.1j-r0
LOW3.7In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sendin…
from 0, < 1.1.1d-r1