CVE search results

51 – 60 of 267 results

Detailed view

Sort by:

CVE-2021-23841

Medium priority

Fixed

The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2021-23840

Low priority

Some fixes available 15 of 19

Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	Not affected	Not affected	Fixed	Vulnerable	Needs evaluation
nodejs	Not affected	Vulnerable	Not affected	Not affected	Not affected
openssl	Fixed	Fixed	Fixed	Fixed	Fixed
openssl1.0	Not in release	Not in release	Not in release	Fixed	Not in release

CVE-2021-23839

Low priority

Not affected

OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Not affected	Not affected	Not affected
openssl1.0	—	—	Not in release	Not affected	Not in release

CVE-2020-1971

High priority

Fixed

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2020-1968

Low priority

Some fixes available 3 of 4

The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	Not affected	Not affected	Not affected	Not affected	Vulnerable
nodejs	Not affected	Not affected	Not affected	Not affected	Not affected
openssl	Not affected	Not affected	Not affected	Not affected	Fixed
openssl1.0	Not in release	Not in release	Not in release	Fixed	Not in release

CVE-2020-1967

High priority

Fixed

Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS...

3 affected packages

edk2, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Not affected	Not affected
openssl1.0	—	—	Not in release	Not affected	Not in release

CVE-2013-3587

Medium priority

Not affected

The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle attackers to obtain plaintext...

1 affected packages

openssl

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
openssl	—	—	—	—	—

CVE-2019-1551

Low priority

Some fixes available 5 of 7

There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2019-1563

Low priority

Some fixes available 14 of 20

In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	Not affected	Not affected	Not affected	Vulnerable	Vulnerable
nodejs	Not affected	Vulnerable	Not affected	Not affected	Not affected
openssl	Fixed	Fixed	Fixed	Fixed	Fixed
openssl1.0	Not in release	Not in release	Not in release	Fixed	Not in release

CVE-2019-1549

Low priority

Some fixes available 5 of 7

OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Not affected
openssl1.0	—	—	Not in release	Not affected	Not in release

Export to JSON

Results by page:

Search CVE reports