Search for packages
| purl | pkg:conan/openssl@1.1.0 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-6pd1-d9gx-kfc1
Aliases: CVE-2021-4044 GHSA-mmjf-f5jw-w72q |
Loop with Unreachable Exit Condition ('Infinite Loop') Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. The exact behaviour will depend on the application but it could result in crashes, infinite loops or other similar incorrect responses. |
Affected by 0 other vulnerabilities. |
|
VCID-gsbn-6t86-7kf9
Aliases: CVE-2022-0778 GHSA-x3mh-jvjw-3xwx |
Loop with Unreachable Exit Condition ('Infinite Loop') The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T12:49:41.492410+00:00 | GitLab Importer | Affected by | VCID-gsbn-6t86-7kf9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/openssl/CVE-2022-0778.yml | 38.0.0 |
| 2026-04-01T12:49:10.762338+00:00 | GitLab Importer | Affected by | VCID-6pd1-d9gx-kfc1 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/openssl/CVE-2021-4044.yml | 38.0.0 |