[USN-4891-1] OpenSSL vulnerability
Severity
High
Affected Packages
18
CVEs
1
OpenSSL could be made to crash if it received specially crafted network traffic.
It was discovered that OpenSSL incorrectly handled certain renegotiation
ClientHello messages. A remote attacker could use this issue to cause
OpenSSL to crash, resulting in a denial of service.
- ID
- USN-4891-1
- Severity
- high
- URL
- https://ubuntu.com/security/notices/USN-4891-1
- Published
-
2021-03-25T14:29:46
(3 years ago) - Modified
-
2021-03-25T14:29:46
(3 years ago) - Other Advisories
-
- ALAS2-2021-1622
- ALAS2-2024-2502
- ALPINE:CVE-2021-3449
- ALSA-2021:1024
- ASA-202103-10
- CISCO-SA-OPENSSL-2021-GHY28DJD
- DSA-4875-1
- ELSA-2021-1024
- ELSA-2021-9151
- FEDORA-2021-cbf14ab8f9
- FREEBSD:56BA4513-A1BE-11EB-9072-D4C9EF517024
- FREEBSD:5A668AB3-8D86-11EB-B8D6-D4C9EF517024
- FREEBSD:C0C1834C-9761-11EB-ACFD-0022489AD614
- GLSA-202103-03
- MS:CVE-2021-3449
- openSUSE-SU-2021:0476-1
- openSUSE-SU-2021:1059-1
- openSUSE-SU-2021:1061-1
- openSUSE-SU-2021:2327-1
- openSUSE-SU-2021:2353-1
- RHSA-2021:1024
- RUSTSEC-2021-0055
- SECADV-20210325-2
- SUSE-SU-2021:0954-1
- SUSE-SU-2021:0955-1
- SUSE-SU-2021:0955-2
- SUSE-SU-2021:2323-1
- SUSE-SU-2021:2326-1
- SUSE-SU-2021:2327-1
- SUSE-SU-2021:2353-1
- USN-5038-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/openssl?distro=groovy | ubuntu | openssl | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/openssl?distro=focal | ubuntu | openssl | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/openssl?distro=bionic | ubuntu | openssl | < 1.1.1-1ubuntu2.1~18.04.9 | bionic | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=groovy | ubuntu | libssl1.1 | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=focal | ubuntu | libssl1.1 | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=bionic | ubuntu | libssl1.1 | < 1.1.1-1ubuntu2.1~18.04.9 | bionic | ||
Affected | pkg:deb/ubuntu/libssl1.1-udeb?distro=groovy | ubuntu | libssl1.1-udeb | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/libssl1.1-udeb?distro=focal | ubuntu | libssl1.1-udeb | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/libssl1.1-udeb?distro=bionic | ubuntu | libssl1.1-udeb | < 1.1.1-1ubuntu2.1~18.04.9 | bionic | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=groovy | ubuntu | libssl-doc | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=focal | ubuntu | libssl-doc | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=bionic | ubuntu | libssl-doc | < 1.1.1-1ubuntu2.1~18.04.9 | bionic | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=groovy | ubuntu | libssl-dev | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=focal | ubuntu | libssl-dev | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=bionic | ubuntu | libssl-dev | < 1.1.1-1ubuntu2.1~18.04.9 | bionic | ||
Affected | pkg:deb/ubuntu/libcrypto1.1-udeb?distro=groovy | ubuntu | libcrypto1.1-udeb | < 1.1.1f-1ubuntu4.3 | groovy | ||
Affected | pkg:deb/ubuntu/libcrypto1.1-udeb?distro=focal | ubuntu | libcrypto1.1-udeb | < 1.1.1f-1ubuntu2.3 | focal | ||
Affected | pkg:deb/ubuntu/libcrypto1.1-udeb?distro=bionic | ubuntu | libcrypto1.1-udeb | < 1.1.1-1ubuntu2.1~18.04.9 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |