pkg:Alpine/openssl3

44 total CVEsCRITICAL3HIGH22MEDIUM17LOW2

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2022-3602X.509 Email Address 4-byte Buffer Overflow
    from 0, < 3.0.7-r0
  • CRITICAL9.8CVE-2021-3711openssl - security update
    from 0, < 1.1.1l-r0
  • CRITICAL9.1CVE-2022-4203openssl-src contains Read Buffer Overflow in X.509 Name Constraint
    from 0, < 3.0.8-r0
  • HIGH7.8CVE-2023-4807Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applic…
    from 0, < 0
  • HIGH7.5CVE-2023-0464openssl - security update
    from 0, < 3.0.8-r1
  • HIGH7.5CVE-2023-0215openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2023-0216openssl-src subject to Invalid pointer dereference in `d2i_PKCS7` functions
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2022-4450openssl-src contains Double free after calling `PEM_read_bio_ex`
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2023-0217openssl-src subject to NULL dereference validating DSA public key
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2023-0401openssl-src contains `NULL` dereference during PKCS7 data verification
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2022-3996Denial of service by double-checked locking in openssl-src
    from 0, < 3.0.8-r0
  • HIGH7.5CVE-2022-3786X.509 Email Address Variable Length Buffer Overflow
    from 0, < 3.0.7-r0
  • HIGH7.5CVE-2022-3358Using a Custom Cipher with `NID_undef` may lead to NULL encryption
    from 0, < 3.0.6-r0
  • HIGH7.5CVE-2022-2097AES OCB fails to encrypt some bytes
    from 0, < 3.0.5-r0
  • HIGH7.5CVE-2022-1473Resource leakage when decoding certificates and keys
    from 0, < 3.0.3-r0
  • HIGH7.5CVE-2022-0778Infinite loop in BN_mod_sqrt() reachable when parsing certificates
    from 0, < 3.0.2-r0
  • HIGH7.5CVE-2021-4044Invalid handling of X509_verify_cert() internal errors in libssl
    from 0, < 3.0.2-r0
  • HIGH7.5CVE-2021-23840Integer overflow in CipherUpdate
    from 0, < 1.1.1j-r0
  • HIGH7.5CVE-2020-1967Null pointer deference in openssl-src
    from 0, < 1.1.1g-r0
  • HIGH7.4CVE-2023-0286Vulnerable OpenSSL included in cryptography wheels
    from 0, < 3.0.8-r0
  • HIGH7.4CVE-2021-3712Read buffer overruns processing ASN.1 strings
    from 0, < 1.1.1l-r0
  • HIGH7.4CVE-2021-3450CA certificate check bypass with X509_V_FLAG_X509_STRICT
    from 0, < 1.1.1k-r0
  • HIGH7.4CVE-2019-1543openssl - security update
    from 0, < 1.1.1b-r1
  • HIGH7.3CVE-2022-2068openssl - security update
    from 0, < 0
  • HIGH7.3CVE-2022-1292openssl - security update
    from 0, < 0
  • MEDIUM6.5CVE-2023-2650Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow.
    from 0, < 3.0.9-r0
  • MEDIUM5.9CVE-2023-1255Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the inp…
    from 0, < 3.0.8-r3
  • MEDIUM5.9CVE-2022-4304openssl-src subject to Timing Oracle in RSA Decryption
    from 0, < 3.0.8-r0
  • MEDIUM5.9CVE-2022-1434Incorrect MAC key used in the RC4-MD5 ciphersuite
    from 0, < 3.0.3-r0
  • MEDIUM5.9CVE-2021-3449NULL pointer deref in signature_algorithms processing
    from 0, < 1.1.1k-r0
  • MEDIUM5.9CVE-2021-23841Null pointer deref in `X509_issuer_and_serial_hash()`
    from 0, < 1.1.1j-r0
  • MEDIUM5.9CVE-2020-1971EDIPARTYNAME NULL pointer dereference
    from 0, < 1.1.1i-r0
  • MEDIUM5.9CVE-2018-0734The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack.
    from 0, < 1.1.1a-r0
  • MEDIUM5.9CVE-2018-0735openssl - security update
    from 0, < 1.1.1a-r0
  • MEDIUM5.3CVE-2023-3817Issue summary: Checking excessively long DH keys or parameters may be very slow.
    from 0, < 3.0.11-r0
  • MEDIUM5.3CVE-2023-3446openssl - security update
    from 0, < 3.0.9-r2
  • MEDIUM5.3CVE-2023-2975Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenti…
    from 0, < 3.0.9-r1
  • MEDIUM5.3CVE-2023-0465Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent cer…
    from 0, < 3.0.8-r2
  • MEDIUM5.3CVE-2022-1343`OCSP_basic_verify` may incorrectly verify the response signing certificate
    from 0, < 3.0.3-r0
  • MEDIUM5.3CVE-2019-1551openssl - security update
    from 0, < 1.1.1d-r3
  • MEDIUM5.3CVE-2019-1549OpenSSL 1.1.1 introduced a rewritten random number generator (RNG).
    from 0, < 1.1.1d-r1
  • MEDIUM4.7CVE-2019-1547openssl1.0 - security update
    from 0, < 1.1.1d-r1
  • LOW3.7CVE-2021-23839OpenSSL 1.0.2 supports SSLv2.
    from 0, < 1.1.1j-r0
  • LOW3.7CVE-2019-1563In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sendin…
    from 0, < 1.1.1d-r1