[USN-5488-1] OpenSSL vulnerability
Severity
Medium
Affected Packages
19
CVEs
1
OpenSSL could be made to crash or run programs when the c_rehash script is used.
Chancen and Daniel Fiala discovered that OpenSSL incorrectly handled the
c_rehash script. A local attacker could possibly use this issue to execute
arbitrary commands when c_rehash is run.
- ID
- USN-5488-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-5488-1
- Published
-
2022-06-21T14:36:21
(2 years ago) - Modified
-
2022-06-21T14:36:21
(2 years ago) - Other Advisories
-
- ALAS-2022-1626
- ALAS2-2022-1831
- ALAS2-2022-1832
- ALAS2-2024-2502
- ALSA-2022:5818
- ALSA-2022:6224
- DSA-5169-1
- ELSA-2022-5818
- ELSA-2022-6224
- ELSA-2022-9683
- ELSA-2022-9751
- FEDORA-2022-3b7d0abd0b
- FEDORA-2022-41890e9e44
- FREEBSD:4EEB93BF-F204-11EC-8FBD-D4C9EF517024
- MS:CVE-2022-2068
- RHSA-2022:5818
- RHSA-2022:6224
- RLSA-2022:5818
- SECADV-20220621-1
- SSA:2022-174-01
- SSA:2022-179-03
- SUSE-SU-2022:2179-1
- SUSE-SU-2022:2180-1
- SUSE-SU-2022:2181-1
- SUSE-SU-2022:2182-1
- SUSE-SU-2022:2197-1
- SUSE-SU-2022:2251-1
- SUSE-SU-2022:2251-2
- SUSE-SU-2022:2306-1
- SUSE-SU-2022:2308-1
- SUSE-SU-2022:2309-1
- SUSE-SU-2022:2321-1
- USN-5488-2
- USN-6457-1
- USN-7018-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/openssl?distro=jammy | ubuntu | openssl | < 3.0.2-0ubuntu1.5 | jammy | ||
Affected | pkg:deb/ubuntu/openssl?distro=impish | ubuntu | openssl | < 1.1.1l-1ubuntu1.5 | impish | ||
Affected | pkg:deb/ubuntu/openssl?distro=focal | ubuntu | openssl | < 1.1.1f-1ubuntu2.15 | focal | ||
Affected | pkg:deb/ubuntu/openssl?distro=bionic | ubuntu | openssl | < 1.1.1-1ubuntu2.1~18.04.19 | bionic | ||
Affected | pkg:deb/ubuntu/openssl1.0?distro=bionic | ubuntu | openssl1.0 | < 1.0.2n-1ubuntu5.10 | bionic | ||
Affected | pkg:deb/ubuntu/libssl3?distro=jammy | ubuntu | libssl3 | < 3.0.2-0ubuntu1.5 | jammy | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=impish | ubuntu | libssl1.1 | < 1.1.1l-1ubuntu1.5 | impish | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=focal | ubuntu | libssl1.1 | < 1.1.1f-1ubuntu2.15 | focal | ||
Affected | pkg:deb/ubuntu/libssl1.1?distro=bionic | ubuntu | libssl1.1 | < 1.1.1-1ubuntu2.1~18.04.19 | bionic | ||
Affected | pkg:deb/ubuntu/libssl1.0.0?distro=bionic | ubuntu | libssl1.0.0 | < 1.0.2n-1ubuntu5.10 | bionic | ||
Affected | pkg:deb/ubuntu/libssl1.0-dev?distro=bionic | ubuntu | libssl1.0-dev | < 1.0.2n-1ubuntu5.10 | bionic | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=jammy | ubuntu | libssl-doc | < 3.0.2-0ubuntu1.5 | jammy | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=impish | ubuntu | libssl-doc | < 1.1.1l-1ubuntu1.5 | impish | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=focal | ubuntu | libssl-doc | < 1.1.1f-1ubuntu2.15 | focal | ||
Affected | pkg:deb/ubuntu/libssl-doc?distro=bionic | ubuntu | libssl-doc | < 1.1.1-1ubuntu2.1~18.04.19 | bionic | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=jammy | ubuntu | libssl-dev | < 3.0.2-0ubuntu1.5 | jammy | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=impish | ubuntu | libssl-dev | < 1.1.1l-1ubuntu1.5 | impish | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=focal | ubuntu | libssl-dev | < 1.1.1f-1ubuntu2.15 | focal | ||
Affected | pkg:deb/ubuntu/libssl-dev?distro=bionic | ubuntu | libssl-dev | < 1.1.1-1ubuntu2.1~18.04.19 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |