Search for packages
Package details: pkg:ebuild/dev-libs/openssl@0.9.8g-r2
purl pkg:ebuild/dev-libs/openssl@0.9.8g-r2
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-8ev4-wfhv-aaah Testing using the Codenomicon TLS test suite discovered a flaw in the handling of server name extension data in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If OpenSSL has been compiled using the non-default TLS server name extensions, a remote attacker could send a carefully crafted packet to a server application using OpenSSL and cause it to crash. CVE-2008-0891
VC-OPENSSL-20080528-CVE-2008-0891
VCID-cfsd-mafb-aaaq Testing using the Codenomicon TLS test suite discovered a flaw if the 'Server Key exchange message' is omitted from a TLS handshake in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If a client connects to a malicious server with particular cipher suites, the server could cause the client to crash. CVE-2008-1672
VC-OPENSSL-20080528-CVE-2008-1672

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T12:38:41.324444+00:00 Gentoo Importer Fixing VCID-cfsd-mafb-aaaq https://security.gentoo.org/glsa/200806-08 36.0.0
2025-03-28T12:38:41.307407+00:00 Gentoo Importer Fixing VCID-8ev4-wfhv-aaah https://security.gentoo.org/glsa/200806-08 36.0.0
2024-09-18T07:32:24.247187+00:00 Gentoo Importer Fixing VCID-cfsd-mafb-aaaq https://security.gentoo.org/glsa/200806-08 34.0.1
2024-09-18T07:32:24.221136+00:00 Gentoo Importer Fixing VCID-8ev4-wfhv-aaah https://security.gentoo.org/glsa/200806-08 34.0.1
2024-01-04T01:38:51.626321+00:00 Gentoo Importer Fixing VCID-cfsd-mafb-aaaq https://security.gentoo.org/glsa/200806-08 34.0.0rc1
2024-01-04T01:38:51.605939+00:00 Gentoo Importer Fixing VCID-8ev4-wfhv-aaah https://security.gentoo.org/glsa/200806-08 34.0.0rc1