CVE-2011-4109

Опубликовано: 06 янв. 2012

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 9.3

Описание

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

Релиз	Статус	Примечание
devel	not-affected	1.0.0e-2ubuntu4
hardy	released	0.9.8g-4ubuntu3.15
lucid	released	0.9.8k-7ubuntu8.8
maverick	released	0.9.8o-1ubuntu4.6
natty	released	0.9.8o-5ubuntu1.2
oneiric	not-affected	1.0.0e-2ubuntu4
upstream	released	0.9.8s

Показывать по

Релиз	Статус	Примечание
devel	released	0.9.8o-7ubuntu3.1
hardy	DNE
lucid	DNE
maverick	DNE
natty	DNE
oneiric	released	0.9.8o-7ubuntu1.2
upstream	released	0.9.8s

Показывать по

Ссылки на источники

EPSS

Процентиль: 90%

0.05899

Низкий

9.3 Critical

CVSS2

Связанные уязвимости

CVE-2011-4109

redhat

почти 14 лет назад

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

CVE-2011-4109

nvd

почти 14 лет назад

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

CVE-2011-4109

debian

почти 14 лет назад

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_ ...

GHSA-fr6r-xw3f-g957

github

больше 3 лет назад

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

ELSA-2012-0060

oracle-oval

почти 14 лет назад

ELSA-2012-0060: openssl security update (MODERATE)

EPSS

Процентиль: 90%

0.05899

Низкий

9.3 Critical

CVSS2

CVE-2011-4109

Описание

Пакет openssl

Пакет openssl098

Ссылки на источники

Связанные уязвимости