CVE search results

51 – 60 of 73 results

Detailed view

Sort by:

CVE-2020-1971

High priority

Fixed

The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2020-1968

Low priority

Some fixes available 3 of 4

The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	Not affected	Not affected	Not affected	Not affected	Vulnerable
nodejs	Not affected	Not affected	Not affected	Not affected	Not affected
openssl	Not affected	Not affected	Not affected	Not affected	Fixed
openssl1.0	Not in release	Not in release	Not in release	Fixed	Not in release

CVE-2020-1967

High priority

Fixed

Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS...

3 affected packages

edk2, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Not affected	Not affected
openssl1.0	—	—	Not in release	Not affected	Not in release

CVE-2019-1551

Low priority

Some fixes available 5 of 7

There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2019-1563

Low priority

Some fixes available 14 of 20

In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	Not affected	Not affected	Not affected	Vulnerable	Vulnerable
nodejs	Not affected	Vulnerable	Not affected	Not affected	Not affected
openssl	Fixed	Fixed	Fixed	Fixed	Fixed
openssl1.0	Not in release	Not in release	Not in release	Fixed	Not in release

CVE-2019-1549

Low priority

Some fixes available 5 of 7

OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Not affected
openssl1.0	—	—	Not in release	Not affected	Not in release

CVE-2019-1547

Low priority

Some fixes available 6 of 7

Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	Not affected	Not affected	Not affected
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Fixed	Fixed	Fixed
openssl1.0	—	—	Not in release	Fixed	Not in release

CVE-2019-1552

Low priority

Not affected

OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLDIR, and is configurable with...

4 affected packages

edk2, nodejs, openssl, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
edk2	—	—	—	Not affected	Not affected
nodejs	—	—	—	Not affected	Not affected
openssl	—	—	—	Not affected	Not affected
openssl1.0	—	—	—	Not affected	Not in release

CVE-2019-1543

Low priority

Some fixes available 2 of 3

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) should be 96 bits (12 bytes). OpenSSL allows a variable nonce length and front...

4 affected packages

nodejs, openssl, openssl098, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
nodejs	—	—	—	Not affected	Not affected
openssl	—	—	—	Fixed	Not affected
openssl098	—	—	—	Not in release	Not in release
openssl1.0	—	—	—	Not affected	Not in release

CVE-2019-1559

Medium priority

Fixed

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is...

4 affected packages

nodejs, openssl, openssl098, openssl1.0

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
nodejs	—	—	Not affected	Not affected	Not affected
openssl	—	—	Not affected	Not affected	Fixed
openssl098	—	—	Not in release	Not in release	Not in release
openssl1.0	—	—	Not in release	Fixed	Not in release

Export to JSON

Results by page:

Search CVE reports