Search for packages
| purl | pkg:deb/debian/openssl@0.9.8-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ds3k-7ny3-7qbh | OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970. |
CVE-2009-0653
|
| VCID-vcz8-amaa-hycq | The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certificates with a valid certificate authority signature. |
CVE-2005-2946
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T10:48:44.324781+00:00 | Debian Importer | Fixing | VCID-vcz8-amaa-hycq | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T08:44:30.143316+00:00 | Debian Importer | Fixing | VCID-ds3k-7ny3-7qbh | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-12T18:15:10.254299+00:00 | Debian Importer | Fixing | VCID-vcz8-amaa-hycq | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-11T17:52:21.454237+00:00 | Debian Importer | Fixing | VCID-ds3k-7ny3-7qbh | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:48:56.578715+00:00 | Debian Importer | Fixing | VCID-ds3k-7ny3-7qbh | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:48:55.698461+00:00 | Debian Importer | Fixing | VCID-vcz8-amaa-hycq | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |