Search for packages
| purl | pkg:deb/debian/openssl@3.0.14-1~deb12u1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-6mua-rkdu-87ay | openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter |
CVE-2025-68160
|
| VCID-7xwq-vdej-ayg1 | openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification |
CVE-2026-22796
|
| VCID-87vs-4p6w-xbgq |
CVE-2026-31789
|
|
| VCID-8gde-1md7-5yak | OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable to a Minerva attack, exploitable by measuring the time of signing of random messages using the EVP_DigestSign API, and then using the private key to extract the K value (nonce) from the signatures. Next, based on the bit size of the extracted nonce, one can compare the signing time of full-sized nonces to signatures that used smaller nonces, via statistical tests. There is a side-channel in the P-364 curve that allows private key extraction (also, there is a dependency between the bit size of K and the size of the side channel). NOTE: This CVE is disputed because the OpenSSL security policy explicitly notes that any side channels which require same physical system to be detected are outside of the threat model for the software. The timing signal is so small that it is infeasible to be detected without having the attacking process running on the same physical system. |
CVE-2025-27587
|
| VCID-antn-nu5a-7yf6 | openssl: OpenSSL: Denial of Service via malformed TimeStamp Response |
CVE-2025-69420
|
| VCID-bfv6-sbnh-5uh5 | openssl: SSL_select_next_proto buffer overread |
CVE-2024-5535
|
| VCID-cef8-2p5t-bff7 |
CVE-2026-31790
|
|
| VCID-chgr-9utt-kqbp | openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing |
CVE-2025-69419
|
| VCID-efpm-7cfa-z7hx | openssl: Unbounded memory growth with session handling in TLSv1.3 |
CVE-2024-2511
|
| VCID-f2na-rtsu-ffad |
CVE-2026-28387
|
|
| VCID-fwwa-41df-zqfk | openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap |
CVE-2025-9230
|
| VCID-gz4c-x1gb-muat | openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access |
CVE-2024-9143
|
| VCID-hgvf-vxhr-cye8 |
CVE-2026-28388
|
|
| VCID-hpev-apm4-sqfw | Null pointer dereference in PKCS12 parsing Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL does not correctly check for this case. This can lead to a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue. OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. |
CVE-2024-0727
GHSA-9v9h-cgj8-h64p |
| VCID-jq5s-hzam-zfda | openssl: Use After Free with SSL_free_buffers |
CVE-2024-4741
|
| VCID-mg21-k76s-sqfp | openssl: Timing side-channel in ECDSA signature computation |
CVE-2024-13176
|
| VCID-p7ca-uc7n-mfc4 | openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls |
CVE-2025-69418
|
| VCID-rgue-at15-k7a2 | openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing |
CVE-2026-22795
|
| VCID-sn5k-3e59-7ba8 | Improper Check for Unusual or Exceptional Conditions Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() does not make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it does not check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the "-pubcheck" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue. |
CVE-2023-5678
|
| VCID-w9yg-3dbq-8qge | openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing |
CVE-2025-69421
|
| VCID-wuwm-ksb1-6qd5 |
CVE-2026-28390
|
|
| VCID-zkc9-huk8-27bc |
CVE-2026-28389
|