OpenSSL

OpenSSL

300 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 8.52%
  • Veröffentlicht 19.03.2015 22:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) v...

  • EPSS 8.37%
  • Veröffentlicht 19.03.2015 22:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial o...

  • EPSS 20.71%
  • Veröffentlicht 19.03.2015 22:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ASN1_TYPE_cmp function in crypto/asn1/a_type.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly perform boolean-type comparisons, which allows remote attackers to cause a denial of ser...

  • EPSS 5.75%
  • Veröffentlicht 19.03.2015 22:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffin...

  • EPSS 16.33%
  • Veröffentlicht 19.03.2015 22:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corrup...

  • EPSS 33.48%
  • Veröffentlicht 19.03.2015 22:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ASN.1 signature-verification implementation in the rsa_item_verify function in crypto/rsa/rsa_ameth.c in OpenSSL 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted...

  • EPSS 7.3%
  • Veröffentlicht 19.03.2015 22:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The dtls1_listen function in d1_lib.c in OpenSSL 1.0.2 before 1.0.2a does not properly isolate the state information of independent data streams, which allows remote attackers to cause a denial of service (application crash) via crafted DTLS traffic,...

  • EPSS 59.32%
  • Veröffentlicht 09.01.2015 02:59:12
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading...

  • EPSS 24.63%
  • Veröffentlicht 09.01.2015 02:59:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to...

  • EPSS 98.69%
  • Veröffentlicht 09.01.2015 02:59:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ...