CVE-2011-4577 — Reachable Assertion in Openssl

CWE-39910 documents7 sources

Severity

4.3MEDIUMNVD

EPSS

2.8%

top 13.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl

Timeline

PublishedJan 6

Latest updateMay 17

Description

OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/openssl< openssl 1.0.0f-1 (bookworm)

▶Debianopenssl/openssl< 1.0.0f-1+3

▶NVDopenssl/openssl0.9.8r+57

🔴Vulnerability Details

GHSA

GHSA-566r-v75p-wp79: OpenSSL before 0↗2022-05-17

▶

OSV

CVE-2011-4577: OpenSSL before 0↗2012-01-06

▶

📋Vendor Advisories

Ubuntu

OpenSSL vulnerabilities↗2012-02-09

▶

Red Hat

openssl: malformed RFC 3779 data can cause assertion failures↗2012-01-04

▶

Debian

CVE-2011-4577: openssl - OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, a...↗2011

▶

💬Community

Bugzilla

CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw-openssl various flaws [fedora-all]↗2012-08-08

▶

Bugzilla

CVE-2011-4108 CVE-2011-4109 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw32-openssl various flaws [epel-5]↗2012-01-11

▶

Bugzilla

CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw32-openssl various flaws [fedora-all]↗2012-01-11

▶

Bugzilla

CVE-2011-4577 openssl: malformed RFC 3779 data can cause assertion failures↗2012-01-04

▶