OpenSSL

OpenSSL

300 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 99.98%
  • Veröffentlicht 05.06.2014 21:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary c...

  • EPSS 87.89%
  • Veröffentlicht 05.06.2014 21:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS...

  • EPSS 43.83%
  • Veröffentlicht 06.05.2014 10:44:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL...

  • EPSS 34.13%
  • Veröffentlicht 14.04.2014 22:38:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via...

Warnung Exploit
  • EPSS 100%
  • Veröffentlicht 07.04.2014 22:55:03
  • Zuletzt bearbeitet 21.04.2026 20:07:16

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer ov...

  • EPSS 0.94%
  • Veröffentlicht 25.03.2014 13:25:21
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.

  • EPSS 11.85%
  • Veröffentlicht 09.01.2014 01:55:03
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake.

  • EPSS 14.54%
  • Veröffentlicht 01.01.2014 16:05:15
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a differe...

  • EPSS 21.17%
  • Veröffentlicht 23.12.2013 22:55:03
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (daemon crash) via crafted traffic from a TLS 1.2 cl...

  • EPSS 35.58%
  • Veröffentlicht 08.02.2013 19:55:01
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding,...