Количество 18
Количество 18
CVE-2016-2107
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.
CVE-2016-2107
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.
CVE-2016-2107
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.
CVE-2016-2107
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1. ...
GHSA-3gm7-8cfv-p8h9
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.
BDU:2020-02962
Уязвимость функции проверки заполнения реализации AES-NI библиотеки OpenSSL, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным
openSUSE-SU-2016:1566-1
Security update for nodejs
openSUSE-SU-2016:1243-1
Security update for openssl
SUSE-SU-2016:1233-1
Security update for openssl
SUSE-SU-2016:1228-1
Security update for openssl
SUSE-SU-2016:1206-1
Security update for openssl1
ELSA-2016-3571
ELSA-2016-3571: openssl-fips security update (IMPORTANT)
ELSA-2016-3558
ELSA-2016-3558: openssl security update (IMPORTANT)
ELSA-2016-3556
ELSA-2016-3556: openssl security update (IMPORTANT)
ELSA-2016-0996
ELSA-2016-0996: openssl security update (IMPORTANT)
ELSA-2016-0722
ELSA-2016-0722: openssl security update (IMPORTANT)
SUSE-SU-2017:2699-1
Security update for SLES 12 Docker image
SUSE-SU-2017:2700-1
Security update for SLES 12-SP1 Docker image
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-2107 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. | CVSS3: 5.9 | 82% Высокий | около 9 лет назад |
 | CVE-2016-2107 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. | CVSS2: 4 | 82% Высокий | около 9 лет назад |
 | CVE-2016-2107 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. | CVSS3: 5.9 | 82% Высокий | около 9 лет назад |
| CVE-2016-2107 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1. ... | CVSS3: 5.9 | 82% Высокий | около 9 лет назад |
| GHSA-3gm7-8cfv-p8h9 The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169. | CVSS3: 5.9 | 82% Высокий | около 3 лет назад |
 | BDU:2020-02962 Уязвимость функции проверки заполнения реализации AES-NI библиотеки OpenSSL, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным | CVSS3: 5.9 | 63% Средний | около 9 лет назад |
 | openSUSE-SU-2016:1566-1 Security update for nodejs | около 9 лет назад | ||
| openSUSE-SU-2016:1243-1 Security update for openssl | около 9 лет назад | ||
| SUSE-SU-2016:1233-1 Security update for openssl | около 9 лет назад | ||
| SUSE-SU-2016:1228-1 Security update for openssl | около 9 лет назад | ||
| SUSE-SU-2016:1206-1 Security update for openssl1 | около 9 лет назад | ||
| ELSA-2016-3571 ELSA-2016-3571: openssl-fips security update (IMPORTANT) | около 9 лет назад | ||
| ELSA-2016-3558 ELSA-2016-3558: openssl security update (IMPORTANT) | около 9 лет назад | ||
| ELSA-2016-3556 ELSA-2016-3556: openssl security update (IMPORTANT) | около 9 лет назад | ||
| ELSA-2016-0996 ELSA-2016-0996: openssl security update (IMPORTANT) | около 9 лет назад | ||
| ELSA-2016-0722 ELSA-2016-0722: openssl security update (IMPORTANT) | около 9 лет назад | ||
| SUSE-SU-2017:2699-1 Security update for SLES 12 Docker image | больше 7 лет назад | ||
| SUSE-SU-2017:2700-1 Security update for SLES 12-SP1 Docker image | больше 7 лет назад |
Уязвимостей на страницу