The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of OpenSSL

OpenSSL: information disclosure via DH Pre-master Secret Raccoon
An attacker can bypass access restrictions to data via DH Pre-master Secret Raccoon of OpenSSL, in order to obtain sensitive information...
CERTFR-2020-AVI-565, CVE-2020-1968, DLA-2378-1, SUSE-SU-2020:14491-1, SUSE-SU-2020:14511-1, SUSE-SU-2020:2634-1, USN-4504-1, VIGILANCE-VUL-33287
OpenSSL: information disclosure via Montgomery Squaring rsaz_512_sqr Overflow
An attacker can bypass access restrictions to data via Montgomery Squaring rsaz_512_sqr() Overflow of OpenSSL, in order to obtain sensitive information...
6228808, CERTFR-2019-AVI-611, cpujul2020, CVE-2019-1551, DSA-2020-062, DSA-2020-112, DSA-4594-1, JSA11025, JSA11074, openSUSE-SU-2020:0062-1, SSA:2019-354-01, SSB-439005, SUSE-SU-2020:0002-1, SUSE-SU-2020:0028-1, SUSE-SU-2020:0064-1, SUSE-SU-2020:0069-1, SUSE-SU-2020:0099-1, SUSE-SU-2020:0474-1, SYMSA1768, USN-4376-1, USN-4376-2, USN-4504-1, VIGILANCE-VUL-31088
OpenSSL: information disclosure via PKCS7/CMS Padding Oracle
An attacker can bypass access restrictions to data via PKCS7/CMS Padding Oracle of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, 3456663, 5695611, 5695629, 5695653, 5695851, 6199286, 6201879, CERTFR-2019-AVI-444, cpuapr2020, cpuoct2019, CVE-2019-1563, DLA-1932-1, DSA-2019-201, DSA-2020-062, DSA-4539-1, DSA-4539-2, DSA-4539-3, DSA-4540-1, JSA11074, NTAP-20190919-0002, openSUSE-SU-2019:2158-1, openSUSE-SU-2019:2189-1, openSUSE-SU-2019:2268-1, openSUSE-SU-2019:2269-1, RHSA-2020:1840-01, SSA:2019-254-03, STORM-2019-018, SUSE-SU-2019:14171-1, SUSE-SU-2019:14174-1, SUSE-SU-2019:2397-1, SUSE-SU-2019:2403-1, SUSE-SU-2019:2410-1, SUSE-SU-2019:2413-1, SUSE-SU-2019:2504-1, SUSE-SU-2019:2558-1, SUSE-SU-2019:2561-1, SUSE-SU-2020:0099-1, SUSE-SU-2020:2634-1, USN-4376-1, USN-4376-2, USN-4504-1, VIGILANCE-VUL-30293
OpenSSL: information disclosure via Fork Protection Low Random
An attacker can bypass access restrictions to data via Fork Protection Low Random of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, 5695611, 5695629, 5695653, 5695851, 6199286, 6201879, CERTFR-2019-AVI-444, cpuapr2020, cpuoct2019, CVE-2019-1549, DSA-4539-1, DSA-4539-2, DSA-4539-3, JSA11074, NTAP-20190919-0002, RHSA-2020:1840-01, SUSE-SU-2020:0099-1, USN-4376-1, USN-4376-2, VIGILANCE-VUL-30292
OpenSSL: information disclosure via ECDSA Falls Back
An attacker can bypass access restrictions to data via ECDSA Falls Back of OpenSSL, in order to obtain sensitive information...
1137844, 1172266, 1172278, 5695611, 5695629, 5695653, 5695851, 6199286, 6201879, CERTFR-2019-AVI-444, cpuapr2020, cpujan2020, cpuoct2019, CVE-2019-1547, DLA-1932-1, DSA-2019-201, DSA-2020-062, DSA-4539-1, DSA-4539-2, DSA-4539-3, DSA-4540-1, JSA11074, NTAP-20190919-0002, NTAP-20200122-0002, openSUSE-SU-2019:2158-1, openSUSE-SU-2019:2189-1, openSUSE-SU-2019:2268-1, openSUSE-SU-2019:2269-1, RHSA-2020:1840-01, SSA:2019-254-03, SUSE-SU-2019:14171-1, SUSE-SU-2019:14174-1, SUSE-SU-2019:2397-1, SUSE-SU-2019:2403-1, SUSE-SU-2019:2410-1, SUSE-SU-2019:2413-1, SUSE-SU-2019:2504-1, SUSE-SU-2019:2558-1, SUSE-SU-2019:2561-1, SUSE-SU-2020:0099-1, USN-4376-1, USN-4376-2, USN-4504-1, VIGILANCE-VUL-30291
OpenSSL Windows: privilege escalation via OPENSSLDIR
An attacker can bypass restrictions via OPENSSLDIR of OpenSSL Windows, in order to escalate his privileges...
1172266, 1172278, 3456663, 5695611, 5695629, 5695653, 5695851, 6199286, 6201879, CERTFR-2019-AVI-362, cpuapr2020, cpuoct2019, CVE-2019-1552, DSA-2020-062, FEDORA-2019-00c25b9379, JSA11074, VIGILANCE-VUL-29914
OpenSSL: information disclosure via Side-channel Based Padding
An attacker can bypass access restrictions to data via Side-channel Based Padding of OpenSSL, in order to obtain sensitive information...
1117951, 7739, openSUSE-SU-2019:1373-1, SUSE-SU-2019:1124-1, SUSE-SU-2019:1136-1, SUSE-SU-2019:1141-1, SUSE-SU-2020:0516-1, SUSE-SU-2020:0576-1, SUSE-SU-2020:14291-1, SUSE-SU-2020:14295-1, VIGILANCE-VUL-29174
OpenSSL: information disclosure via ChaCha20-Poly1305 Long Nonces
An attacker can bypass access restrictions to data via ChaCha20-Poly1305 Long Nonces of OpenSSL, in order to obtain sensitive information...
cpujul2019, CVE-2019-1543, DSA-4475-1, ibm10967487, JSA11074, openSUSE-SU-2019:1147-1, openSUSE-SU-2019:1814-1, RHSA-2019:3700-01, SUSE-SU-2019:0678-1, SUSE-SU-2019:0787-1, VIGILANCE-VUL-28682
OpenSSL 1.0.2: information disclosure via 0-byte Record Padding Oracle
An attacker can bypass access restrictions to data via 0-byte Record Padding Oracle of OpenSSL 1.0.2, in order to obtain sensitive information...
1170328, bulletinapr2019, bulletinjul2019, CERTFR-2019-AVI-080, CERTFR-2019-AVI-132, CERTFR-2019-AVI-214, CERTFR-2019-AVI-325, cpuapr2019, cpujan2020, cpujul2019, cpuoct2019, CVE-2019-1559, DLA-1701-1, DSA-2019-201, DSA-2020-062, DSA-2020-072, DSA-4400-1, FEDORA-2019-00c25b9379, ibm10876638, ibm10886237, ibm10886659, JSA10949, JSA10993, JSA11074, openSUSE-SU-2019:1076-1, openSUSE-SU-2019:1105-1, openSUSE-SU-2019:1173-1, openSUSE-SU-2019:1175-1, openSUSE-SU-2019:1432-1, openSUSE-SU-2019:1637-1, PAN-SA-2019-0039, RHBUG-1683804, RHBUG-1683807, RHSA-2019:2304-01, RHSA-2019:2471-01, SB10282, SSA:2019-057-01, SSB-439005, STORM-2019-001, SUSE-SU-2019:0572-1, SUSE-SU-2019:0600-1, SUSE-SU-2019:0658-1, SUSE-SU-2019:0803-1, SUSE-SU-2019:0818-1, SUSE-SU-2019:1362-1, SUSE-SU-2019:14091-1, SUSE-SU-2019:14092-1, SUSE-SU-2019:1553-1, SUSE-SU-2019:1608-1, SYMSA1490, TNS-2019-02, USN-3899-1, VIGILANCE-VUL-28600
OpenSSL: information disclosure via ECC Scalar Multiplication
On an Intel processor (VIGILANCE-VUL-27667), an attacker can measure the execution time of the ECC Scalar Multiplication of OpenSSL, in order to obtain the used key...
bulletinjan2019, CERTFR-2018-AVI-607, CERTFR-2019-AVI-242, cpuapr2019, cpuapr2020, cpujan2019, cpujan2020, cpujul2019, CVE-2018-5407, DLA-1586-1, DSA-2019-197, DSA-2020-030, DSA-4348-1, DSA-4355-1, ibm10794537, ibm10875298, ibm10886313, K49711130, openSUSE-SU-2018:3903-1, openSUSE-SU-2018:4050-1, openSUSE-SU-2018:4104-1, openSUSE-SU-2019:0088-1, openSUSE-SU-2019:0234-1, RHSA-2019:0483-01, RHSA-2019:2125-01, SSA:2018-325-01, SUSE-SU-2018:3864-1, SUSE-SU-2018:3864-2, SUSE-SU-2018:3866-1, SUSE-SU-2018:3964-1, SUSE-SU-2018:3989-1, SUSE-SU-2018:4001-1, SUSE-SU-2018:4068-1, SUSE-SU-2018:4274-1, SUSE-SU-2019:0117-1, SUSE-SU-2019:0395-1, SUSE-SU-2019:1553-1, SYMSA1490, TNS-2018-16, TNS-2018-17, USN-3840-1, VIGILANCE-VUL-27760
Our database contains other pages. You can request a free trial to read them.

Display information about OpenSSL: