Bugs fixes in "openssl098"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2011-4619 | The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which a | 2012-05-02 |
| CVE | CVE-2012-0050 | OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service via unspecified vect | 2012-05-02 |
| CVE | CVE-2012-2110 | ossl DER int conversion issues | 2012-05-02 |
| CVE | CVE-2006-7250 | The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer d | 2012-05-02 |
| CVE | CVE-2012-1165 | The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of serv | 2012-05-02 |
| CVE | CVE-2012-2131 | ASN1 BIO incomplete fix | 2012-05-02 |
| CVE | CVE-2011-1945 | The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA) is used for | 2012-04-24 |
| CVE | CVE-2011-3210 | The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing o | 2012-04-24 |
| CVE | CVE-2011-4108 | The DTLS implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f performs a MAC check only if certain padding is valid, which makes it easier fo | 2012-04-24 |
| CVE | CVE-2011-4019 | RESERVED | 2012-04-24 |
| CVE | CVE-2011-4576 | The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which | 2012-04-24 |
| CVE | CVE-2011-4577 | OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure | 2012-04-24 |
| CVE | CVE-2011-4619 | The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which a | 2012-04-24 |
| CVE | CVE-2012-0050 | OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service via unspecified vect | 2012-04-24 |
| CVE | CVE-2012-2110 | ossl DER int conversion issues | 2012-04-24 |
| CVE | CVE-2006-7250 | The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer d | 2012-04-24 |
| CVE | CVE-2012-1165 | The mime_param_cmp function in crypto/asn1/asn_mime.c in OpenSSL before 0.9.8u and 1.x before 1.0.0h allows remote attackers to cause a denial of serv | 2012-04-24 |
| CVE | CVE-2012-2131 | ASN1 BIO incomplete fix | 2012-04-24 |
About
-
Send Feedback to @ubuntu_updates
