Debian OpenSSL vulnerabilities

CVE-2005-2969 [MEDIUM] CVE-2005-2969: openssl - The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 befor... The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSL_OP_MSIE_SSLV2_RSA_PADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to use a weaker protocol than needed via a man-in-the-middle attack. S

CVE-2004-0079 [HIGH] CVE-2004-0079: openssl - The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.... The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. Scope: local bookworm: resolved (fixed in 0.9.7d-1) bullseye: resolved (fixed in 0.9.7d-1) forky: resolved (fixed in 0.9.7d-1) sid: resolved (fixed in 0.9.7d

CVE-2004-0081 [MEDIUM] CVE-2004-0081: openssl - OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, whic... OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. Scope: local bookworm: resolved (fixed in 0.9.6d-1) bullseye: resolved (fixed in 0.9.6d-1) forky: resolved (fixed in 0.9.6d-1) sid: resolved (fixed in 0.9.6d-1) tr

CVE-2004-0112 [MEDIUM] CVE-2004-0112: openssl - The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using K... The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read. Scope: local bookworm: resolved (fixed in 0.9.7d-1) bulls

CVE-2004-0975 [LOW] CVE-2004-0975: openssl - The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2... The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files. Scope: local bookworm: resolved (fixed in 0.9.7e-3) bullseye: resolved (fixed in 0.9.7e-3) forky: resolved (fixed in 0.9.7e-3) sid: resolved (fixed in 0.9.7e-3) trixie: resolved (fi

CVE-2003-0545 [CRITICAL] CVE-2003-0545: openssl - Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a de... Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding. Scope: local bookworm: resolved (fixed in 0.9.7c) bullseye: resolved (fixed in 0.9.7c) forky: resolved (fixed in 0.9.7c) sid: resolved (fixed in 0.9.7c) trix

CVE-2003-0131 [HIGH] CVE-2003-0131: openssl - The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a all... The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padding that cause OpenSSL to leak information regarding the relationship between ciphertext and the associate

CVE-2003-0544 [MEDIUM] CVE-2003-0544: openssl - OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in cert... OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used. Scope: local bookworm: resolved (fixed in 0.9.7c) bullseye: resolved (fixed in 0.9.7c) forky

CVE-2003-0078 [MEDIUM] CVE-2003-0078: openssl - ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i do... ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extrac

CVE-2003-0147 [MEDIUM] CVE-2003-0147: openssl - OpenSSL does not use RSA blinding by default, which allows local and remote atta... OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal). Scope: local bookworm: resolved (fixed in 0

CVE-2003-0543 [MEDIUM] CVE-2003-0543: openssl - Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a d... Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values. Scope: local bookworm: resolved (fixed in 0.9.7c) bullseye: resolved (fixed in 0.9.7c) forky: resolved (fixed in 0.9.7c) sid: resolved (fixed in 0.9.7c) trixie: resolved (fixed in 0.9.7c)

CVE-2002-0657 [HIGH] CVE-2002-0657: openssl - Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos enabled, allo... Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos enabled, allows attackers to execute arbitrary code via a long master key. Scope: local bookworm: resolved (fixed in 0.9.6e-1) bullseye: resolved (fixed in 0.9.6e-1) forky: resolved (fixed in 0.9.6e-1) sid: resolved (fixed in 0.9.6e-1) trixie: resolved (fixed in 0.9.6e-1)

CVE-2002-0655 [HIGH] CVE-2002-0655: openssl - OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handl... OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code. Scope: local bookworm: resolved (fixed in 0.9.6e-1) bullseye: resolved (fixed in 0.9.6e-1) forky: resolved (fixed in 0.9.6e-1) sid: resolve

CVE-2002-0656 [HIGH] CVE-2002-0656: openssl - Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, all... Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3. Scope: local bookworm: resolved (fixed in 0.9.6e-1) bullseye: resolved (fixed in 0.9.6e-1) forky: resolved (fixed in 0.9.6e-1) sid: resolved (fixed in 0.9.6e-1) trixie

CVE-2002-0659 [MEDIUM] CVE-2002-0659: openssl - The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, all... The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings. Scope: local bookworm: resolved (fixed in 0.9.6e-1) bullseye: resolved (fixed in 0.9.6e-1) forky: resolved (fixed in 0.9.6e-1) sid: resolved (fixed in 0.9.6e-1) trixie: resolved (fixed in 0.9.6e-1)

CVE-2002-1568 [MEDIUM] CVE-2002-1568: openssl - OpenSSL 0.9.6e uses assertions when detecting buffer overflow attacks instead of... OpenSSL 0.9.6e uses assertions when detecting buffer overflow attacks instead of less severe mechanisms, which allows remote attackers to cause a denial of service (crash) via certain messages that cause OpenSSL to abort from a failed assertion, as demonstrated using SSLv2 CLIENT_MASTER_KEY messages, which are not properly handled in s2_srvr.c. Scope: local bookworm

CVE-2000-1254 [HIGH] CVE-2000-1254: openssl - crypto/rsa/rsa_gen.c in OpenSSL before 0.9.6 mishandles C bitwise-shift operatio... crypto/rsa/rsa_gen.c in OpenSSL before 0.9.6 mishandles C bitwise-shift operations that exceed the size of an expression, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging improper RSA key generation on 64-bit HP-UX platforms. Scope: local bookworm: resolved (fixed in 0.9.6-1) bullseye: resolved (fixed in 0.9.6-1) f