Количество 10
Количество 10
BDU:2024-00851
Уязвимость функции EVP_PKEY_public_check() библиотеки OpenSSL, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2023-0217
An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3.
CVE-2023-0217
An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3.
CVE-2023-0217
An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3.
CVE-2023-0217
An invalid pointer dereference on read can be triggered when an applic ...
GHSA-vxrh-cpg7-8vjr
openssl-src subject to NULL dereference validating DSA public key
SUSE-SU-2023:0312-1
Security update for openssl-3
RLSA-2023:0946
Important: openssl security and bug fix update
ELSA-2023-12152
ELSA-2023-12152: openssl security update (MODERATE)
ELSA-2023-0946
ELSA-2023-0946: openssl security and bug fix update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-00851 Уязвимость функции EVP_PKEY_public_check() библиотеки OpenSSL, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-0217 An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3. | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-0217 An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3. | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-0217 An invalid pointer dereference on read can be triggered when an application tries to check a malformed DSA public key by the EVP_PKEY_public_check() function. This will most likely lead to an application crash. This function can be called on public keys supplied from untrusted sources which could allow an attacker to cause a denial of service attack. The TLS implementation in OpenSSL does not call this function but applications might call the function if there are additional security requirements imposed by standards such as FIPS 140-3. | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
| CVE-2023-0217 An invalid pointer dereference on read can be triggered when an applic ... | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
| GHSA-vxrh-cpg7-8vjr openssl-src subject to NULL dereference validating DSA public key | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:0312-1 Security update for openssl-3 | больше 2 лет назад | ||
 | RLSA-2023:0946 Important: openssl security and bug fix update | около 2 лет назад | ||
| ELSA-2023-12152 ELSA-2023-12152: openssl security update (MODERATE) | больше 2 лет назад | ||
| ELSA-2023-0946 ELSA-2023-0946: openssl security and bug fix update (MODERATE) | больше 2 лет назад |
Уязвимостей на страницу