Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2009-0642

Опубликовано: 29 янв. 2009
Источник: redhat
CVSS2: 5

Описание

ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=486183ruby: Incorrect checks for validity of X.509 certificates

5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2009-0642

ubuntu
больше 16 лет назад

ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.

nvd логотип

CVE-2009-0642

nvd
больше 16 лет назад

ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.

debian логотип

CVE-2009-0642

debian
больше 16 лет назад

ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check th ...

github логотип

GHSA-4gvm-4mw2-9fpv

github
около 3 лет назад

ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.

oracle-oval логотип

ELSA-2009-1140

oracle-oval
почти 16 лет назад

ELSA-2009-1140: ruby security update (MODERATE)

5 Medium

CVSS2