Уязвимость CVE-2009-0126

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected
gutsy	ignored	end of life, was needed
hardy	ignored	end of life
intrepid	ignored	end of life, was needed
jaunty	not-affected	6.2.18-3ubuntu1
karmic	not-affected
lucid	not-affected
maverick	not-affected
natty	not-affected

CVE-2009-0126

redhat

почти 17 лет назад

The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

CVE-2009-0126

nvd

почти 17 лет назад

The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

CVE-2009-0126

debian

почти 17 лет назад

The decrypt_public function in lib/crypt.cpp in the client in Berkeley ...

GHSA-gpcp-59gr-fj3v

github

больше 3 лет назад

The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

BDU:2015-03079

fstec

почти 11 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность защищаемой информации

exploitDog

CVE-2009-0126

Описание

Ссылки на источники

Связанные уязвимости

CVE-2009-0126

Описание

Пакет boinc

Ссылки на источники

Связанные уязвимости