https://openssl.org|openssl vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the https://openssl.org|openssl package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Missing Report of Error Condition	[3.2.0-alpha1,3.2.4)[3.3.0-alpha1,3.3.2)[3.4.0-alpha1,3.4.1)
M Covert Timing Channel	[,3.0.16)
M Out-of-bounds Write	[1.0.2,1.0.2zl)[1.1.1,1.1.1zb)[3.0.0,3.0.16)[3.1.0,3.1.8)[3.2.0,3.2.4)[3.3.0,3.3.3)
H Type Confusion	[3.0.0-alpha1,3.0.15)[3.1.0-alpha1,3.1.7)[3.2.0-alpha1,3.2.3)[3.3.0-alpha1,3.3.2)
H Information Exposure	[3.0.0-alpha1,3.0.15)[3.1.0-alpha1,3.1.7)[3.2.0-alpha1,3.2.3)[3.3.0-alpha1,3.3.2)
M Use After Free	[1.1.1,1.1.1y)[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)[3.3.0,3.3.1)
L Uncontrolled Resource Consumption	[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)[3.3.0,3.3.1)
L Uncontrolled Resource Consumption ('Resource Exhaustion')	[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)
M Observable Timing Discrepancy	[,3.2.0)
M NULL Pointer Dereference	[1.0.2,1.0.2zj)[1.1.1,1.1.1x)[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)
M Resource Exhaustion	[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)
M Use of a Broken or Risky Cryptographic Algorithm	[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)
M Denial of Service (DoS)	[,3.2.0)
M Missing Cryptographic Step	[3.0.0,3.0.12)[3.1.0,3.1.4)
M Denial of Service (DoS)	[1.1.1,1.1.1w)[3.0.0,3.0.11)[3.1.0,3.1.3)
L Denial of Service (DoS)	[1.0.2a,1.1.1v)[3.0.9,3.0.10)[3.1.0,3.1.2)
M Denial of Service (DoS)	[1.0.2a,1.1.1v)[3.0.9,3.0.10)[3.1.0,3.1.2)
L Insufficient Verification of Data Authenticity	[3.0.9,3.0.10)[3.1.0,3.1.2)
M Buffer Over-read	[3.0.0,3.0.9)[3.1.0,3.1.1)
M Denial of Service (DoS)	[1.0.2,1.0.2zh)[1.1.1,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)
L Improper Certificate Validation	[1.1.0,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)
L Improper Certificate Validation	[1.1.0,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)
M Denial of Service (DoS)	[1.0.2a,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)
H Denial of Service (DoS)	[3.0.0,3.0.8)
M Denial of Service (DoS)	[3.0.0,3.0.8)
M Use After Free	[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)
H Access of Resource Using Incompatible Type ('Type Confusion')	[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)
M Timing Attack	[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)
M Denial of Service (DoS)	[3.0.0,3.0.8)
M Denial of Service (DoS)	[3.0.0,3.0.8)
M Denial of Service (DoS)	[1.1.1,1.1.1t)[3.0.0,3.0.8)
M Denial of Service (DoS)	[3.0.0,3.0.8)
H Buffer Overflow	[3.0.0,3.0.7)
H Buffer Overflow	[3.0.0,3.0.7)
M Cryptographic Issues	[3.0.0,3.0.6)
M Information Exposure	[1.1.1,1.1.1q)[3.0.0,3.0.5)
H Heap-based Buffer Overflow	[3.0.4,3.0.5)
H Missing Release of Memory after Effective Lifetime	[3.0.0,3.0.3)
L Key Management Errors	[3.0.0,3.0.3)
H Arbitrary Command Injection	[1.0.2,1.0.2ze)[1.1.1,1.1.1o)[3.0.0,3.0.3)
M Improper Certificate Validation	[3.0.0,3.0.3)
H Infinite loop	[1.0.2,1.0.2zd)[1.1.1,1.1.1n)[3.0.0,3.0.2)
M Denial of Service (DoS)	[,1.0.1e-25.el7]
H Denial of Service (DoS)	[3.0.0,3.0.1)[1.1.0a,1.1.1)
C Use After Free	[0,1.1.0b)
H Denial of Service (DoS)	[,1.0.1q)[1.0.2,1.0.2e)
M Denial of Service (DoS)	[0.9.7d,0.9.8]
M Denial of Service (DoS)	[0.9.6,0.9.7]
M CVE-2004-0975	[0.9.6d,0.9.7c]
M Information Exposure	[,1.0.1u)[1.0.2,1.0.2i)
H Denial of Service (DoS)	[,1.0.1t)[1.0.2,1.0.2h)
M Resource Management Errors	[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)
M Information Exposure	[,1.0.2e)
M Resource Management Errors	[,0.9.8m)
M Insecure Defaults	[1.0.0,1.0.0b)[,0.9.8q)
H Out-of-Bounds	[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)
M Integer Overflow or Wraparound	[0,1.1.1e)
M Improper Input Validation	[0.9.8f,0.9.8m]
H Out-of-Bounds	[0,1.0.1g)
M Security Features	[,1.0.1p)[1.0.2,1.0.2d)
H Resource Management Errors	[,1.0.1u)[1.0.2,1.0.2i)[1.1.0,1.1.0a)
M Improper Input Validation	[0,1.0.1j)
M Resource Management Errors	[,1.0.0]
M Race Condition	[,1.0.0n)[1.0.1,1.0.1i)
H Arbitrary Code Execution	[0.9.6d,0.9.7]
H Improper Input Validation	[0,1.1.0e)
M Out-of-bounds Read	[,1.0.1u)[1.0.2,1.0.2i)
H Denial of Service (DoS)	[0,0.9.8w)
M Resource Management Errors	[0.9.7,1.0.0a]
H Out-of-bounds Read	[1.0.1m,1.1.1l)
H Use of a Risky Cryptographic Algorithm	[,1.1.0k-dev)[1.1.1,1.1.1c-dev)
H Key Management Errors	[,1.0.2p)[1.1.0,1.1.0i)
L Insecure Defaults	[,1.0.0)
H Improper Authentication	[,1.0.0c)
M Cryptographic Issues	[,1.0.1s)[1.0.2,1.0.2g)
H Denial of Service (DoS)	[,1.0.1s)[1.0.2,1.0.2g)
M Denial of Service (DoS)	[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)
M Access Restriction Bypass	[,1.0.0a)
M Denial of Service (DoS)	[,0.9.6e]
C Out-of-Bounds	[,0.9.7l)[0.9.8,0.9.8d)
M Denial of Service (DoS)	[0.9.6d,0.9.7]
C Out-of-Bounds	[0.9.6,0.9.7]
M Denial of Service (DoS)	[,0.9.8zd)[1.0.0,1.0.0p)[1.0.1,1.0.1k)
M Race Condition	[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)
L Cryptographic Issues	[,0.9.8y)[1.0.0,1.0.0k)[1.0.1,1.0.1d)[1.2.0,1.2.5)[1.11.0,1.11.8)[1.12.0,1.12.3)[2.1.0,2.1.6)[2.2.0,2.2.6)[2.3.0,2.3.7)
H Denial of Service (DoS)	[1.0.2,1.0.2h)[1.0.1,1.0.1t)
M Denial Of Service (DoS)	[1.0.0,1.0.0f)[,0.9.8s)
M Improper Input Validation	[,0.9.8j)
M Cryptographic Issues	[,0.9.8j)
M Integer Overflow or Wraparound	[,1.0.2y)[1.1.1,1.1.1j)
L Cryptographic Issues	[1.0.1,1.0.1g)[1.0.0,1.0.0m)[,0.9.8za)
H Denial of Service (DoS)	[,1.0.2i)
M Use of a Risky Cryptographic Algorithm	[,1.0.2q-dev)[1.1.0,1.1.0j-dev)[1.1.1,1.1.1a-dev)
M Resource Management Errors	[0.9.8h,1.0.0]
M Denial of Service (DoS)	[,1.0.2e)
M Denial of Service (DoS)	[0.9.8f,0.9.8g]
M Denial of Service (DoS)	[0,1.0.2a)
M Information Exposure	[0,1.0.2n)
M Information Exposure	[,1.0.1s)[1.0.2,1.0.2g)
M Resource Management Errors	[0.9.8f,0.9.8h]
H Improper Access Control	[0,1.1.0c)
L Improper Input Validation	[0,1.0.2a)
M Denial of Service (DoS)	[0.9.6d,0.9.7]
M Cryptographic Issues	[0,1.0.1d)
H NULL Pointer Dereference	[0,1.1.0c)
M NULL Pointer Dereference	[0,1.1.1i)
L Cryptographic Issues	[1.0.0,1.0.0e)
M Resource Management Errors	[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)
L Improper Certificate Validation	[,1.0.2t)[1.1.0,1.1.0l)[1.1.1,1.1.1d)
M NULL Pointer Dereference	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
H Out-of-Bounds	[1.0.1,1.0.1a)[1.0.0,1.0.0i)[,0.9.8v)
M Cryptographic Issues	[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)
M User Enumeration	[,1.1.0i)[1.1.0,1.1.1)
M Denial of Service (DoS)	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M Out-of-Bounds	[,0.9.8k)
M Timing Attack	[0.9.6d,0.9.7]
H Denial of Service (DoS)	[0.9.6d,0.9.7]
M Improper Input Validation	[0,1.0.1f)
M NULL Pointer Dereference	[,0.9.7l)[0.9.8,0.9.8d)
H Resource Management Errors	[,0.9.7l)[0.9.8,0.9.8d)
H Resource Management Errors	[,0.9.8s)
M Race Condition	[,1.0.0t)[1.0.1,1.0.1p)[1.0.2,1.0.2d)
L Cryptographic Issues	[0.9.8d,1.0.1]
M Access Restriction Bypass	[0,1.0.0e)
H Resource Management Errors	[1.0.2,1.0.2h)[1.0.1,1.0.1t)
M Out-of-Bounds	[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)
M Race Condition	[1.0.1,1.0.1h)[1.0.0,1.0.0m)
M Improper Input Validation	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M Improper Input Validation	[1.0.1,1.0.1j)[1.0.0,1.0.0o)[,0.9.8zc)
C Out-of-Bounds	[1.0.2,1.0.2c)[1.0.1,1.0.1o)
L Use of a Risky Cryptographic Algorithm	[1.1.1,1.1.1d)[1.1.0,1.1.0l)[1.0.2,1.0.2t)
M Timing Attack	[,1.0.2)
H Race Condition	[0.9.8f,1.0.0]
M Cryptographic Issues	[,0.9.8)
H Improper Certificate Validation	[1.1.1h,1.1.1k)
M Denial of Service (DoS)	[0,1.0.2a)
H Session Fixation	[,0.9.2b)
C Use After Free	[,0.10.9)
M Cryptographic Issues	[,0.9.8]
H Resource Management Errors	[,0.9.7l)[0.9.8,0.9.8d)
M Cryptographic Issues	[,0.9.8i]
M Denial of Service (DoS)	[,0.9.6d)
H Cryptographic Issues	[1.0.0,1.0.0a)[,0.9.8o)
L User Enumeration	[0,1.0.2w)
M Cryptographic Issues	[1.0.2,1.0.2h)[1.0.1,1.0.1t)
M Resource Management Errors	[,0.9.8m)
M Insecure Defaults	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M Denial of Service (DoS)	[1.0.1,1.0.1c)[1.0.0,1.0.0j)[,0.9.8x)
H Out-of-Bounds	[1.0.2,1.0.2t)[1.0.1,1.0.1t)
M Information Exposure	[,1.0.2m)[1.1.0,1.1.0g)
M Cryptographic Issues	[,1.0.0l)[1.0.1,1.0.1f)
M Cryptographic Issues	[,0.9.8y)[1.0.0,1.0.0k)[1.0.1,1.0.1d)
M CVE-2001-1141	[,0.9.6b)
M Out-of-Bounds	[,1.0.0p)[1.0.1,1.0.1k)
M Denial of Service (DoS)	[0,1.0.1i)
M Resource Management Errors	[0,1.1.0a)
M Information Exposure	[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)
C Buffer Overflow	[1.1.0a,1.1.1l)
H Improper Input Validation	[,1.0.1u)[1.0.2,1.0.2i)
M Resource Management Errors	[,1.0.0e)
M Denial Of Service (DoS)	[,0.9.8m)
M Out-of-Bounds	[,0.9.8m)
M Cryptographic Issues	[,1.1.0j)[1.1.1,1.1.1a)
M Denial Of Service (DoS)	[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0e)[,0.9.8s)
M Cryptographic Issues	[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)
M Denial of Service (DoS)	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M Cryptographic Issues	[,1.0.0p)[1.0.1,1.0.1k)
H Information Exposure	[0.9.6d,0.9.7]
H Denial of Service (DoS)	[,0.9.8f)
M Denial of Service (DoS)	[,1.0.0m)[1.0.1,1.0.1h)
M Improper Authentication	[0.9.8f,0.9.8g]
C Denial of Service (DoS)	[,1.0.1s)[1.0.2,1.0.2g)
M Code	[0,1.0.2a)
H NULL Pointer Dereference	[0,1.1.0d)
H Out-of-bounds Read	[,1.0.2k)[1.1.0,1.1.0d)
M Information Exposure	[,0.9.6i)[0.9.7,0.9.7a)
M Denial of Service (DoS)	[0,1.0.2a)
M CVE-2005-2969	[,0.9.7h)[0.9.8,0.9.8a)
H NULL Pointer Dereference	[1.1.1d,1.1.1g)
M User Enumeration	[0,1.0.2r)
M Information Exposure	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M NULL Pointer Dereference	[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)
M Insecure Defaults	[1.1.1,1.1.1d)[1.1.0,1.1.0l)[1.0.2,1.0.2t)
M Cryptographic Issues	[,0.9.8k)
M Out-of-Bounds	[,1.0.2m)[1.1.0,1.1.0g)
C Out-of-bounds Write	[,1.0.1u)[1.0.2,1.0.2i)
M Denial of Service (DoS)	[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)
M Denial of Service (DoS)	[0.9.6d,0.9.7]
M CVE-2014-3511	[0,1.0.1i)
M Cryptographic Issues	[,1.0.1r)[1.0.2,1.0.2f)
H Improper Certificate Validation	[,0.9.0)
M Denial of Service (DoS)	[0.9.6,0.9.7]
H Resource Management Errors	[,1.0.1u)[1.0.2,1.0.2i)
M NULL Pointer Dereference	[,0.9.8i)
M Improper Input Validation	[,0.9.8n)
L Insecure Encryption	[1.1.0a,1.1.1j)[1.0.2s,1.0.2y)
M Denial Of Service	[1.0.0,1.0.0h)[,0.9.8u)
M Cryptographic Issues	[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)
M Insecure Randomness	[1.1.1,1.1.1d)
H Insecure Encryption	[,0.9.8za)[1.0.0,1.0.0m)[1.0.1,1.0.1h)
M Cryptographic Issues	[,0.9.8h)
M Cryptographic Issues	[1.0.0,1.0.0h)[,0.9.8u)
M Denial of Service (DoS)	[0.9.6d,0.9.7]
H Improper Input Validation	[0,1.1.0a)
M NULL Pointer Dereference	[1.1.0a,1.1.1k)
M Cryptographic Issues	[0,1.0.2a)
M Out-of-bounds Read	[0,1.0.2n)
C Integer Overflow or Wraparound	[,1.0.1u)[1.0.2,1.0.2i)
M Denial of Service (DoS)	[0,1.1.0a)
M Denial Of Service (Dos)	[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)
M Cryptographic Issues	[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)
M Cryptographic Issues	[1.0.1,1.0.1f)
M Information Exposure	[,0.9.8zh)[1.0.0,1.0.0t)[1.0.1,1.0.1q)[1.0.2,1.0.2e)
M Access Restriction Bypass	[,0.9.8l)
M Cryptographic Issues	[1.0.0,1.0.0f)[,0.9.8s)
M Denial Of Service (Dos)	[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)
M Cryptographic Issues	[0.9.8,0.9.8c)[0.9.7,0.9.7k)
C Improper Input Validation	[,0.9.8m)
M Insecure Defaults	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
L Information Exposure	[,1.0.2f)
H Arbitrary Code Execution	[,0.9.7-beta3)
H Improper Authentication	[,0.9.6]
M Resource Management Errors	[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)
H Out-of-bounds Read	[,1.0.1u)[1.0.2,1.0.2i)
H Resource Management Errors	[,1.0.1s)[1.0.2,1.0.2g)
H Denial of Service (DoS)	[,1.0.1u)[1.0.2,1.0.2i)
H NULL Pointer Dereference	[0,1.0.2j)
M Denial Of Service (DoS)	[,0.9.8u)
M Information Exposure	[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)
M Cryptographic Issues	[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)
H Integer Overflow or Wraparound	[,1.0.2y)[1.1.1,1.1.1j)
M Denial of Service (DoS)	[,0.9.8k)
L Cryptographic Issues	[1.0.1,1.0.1h)[1.0.2,1.0.2b)
H Out-of-Bounds	[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)
C Out-of-bounds Write	[,1.1.0)
M Key Management Errors	[,1.0.2k)[1.1.0,1.1.0c)
M CVE-2000-0535	[,0.9.4]
C Out-of-Bounds	[,1.0.1s)[1.0.2,1.0.2g)
L Improper Authentication	[0.9.8h,0.9.8j]
M Resource Management Errors	[0.9.8s,1.0.0f]
H Out-of-Bounds	[0,1.0.1i)
M Information Exposure	[,1.0.2k)[1.1.0,1.1.0d)
C Out-of-Bounds	[,1.0.1s)[1.0.2,1.0.2g)
M CVE-2003-0147	[0.9.6d,0.9.7]
H Cryptographic Issues	[,0.9.6)
M Cryptographic Issues	[1.0.0,1.0.0f)[,0.9.8s)
M Insecure Defaults	[0,1.1.0h)
M Cryptographic Issues	[,0.9.8m)
M Buffer Overflow	[,1.0.2o)[1.1.0,1.1.0h)
M Cryptographic Issues	[,1.0.2p)[1.1.0,1.1.0i)
H Out-of-Bounds	[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)
M Denial Of Service (DoS)	[,1.0.0f)
M Resource Management Errors	[1.0.0,1.0.0f)[,0.9.8s)
M Cryptographic Issues	[1.0.1,1.0.1j)[1.0.0,1.0.0o)[,0.9.8zc)
H Information Exposure	[1.0.1d,1.0.2c]

Vulnerability

Vulnerable Version

Missing Report of Error Condition

[3.2.0-alpha1,3.2.4)[3.3.0-alpha1,3.3.2)[3.4.0-alpha1,3.4.1)

Covert Timing Channel

[,3.0.16)

Out-of-bounds Write

[1.0.2,1.0.2zl)[1.1.1,1.1.1zb)[3.0.0,3.0.16)[3.1.0,3.1.8)[3.2.0,3.2.4)[3.3.0,3.3.3)

Type Confusion

[3.0.0-alpha1,3.0.15)[3.1.0-alpha1,3.1.7)[3.2.0-alpha1,3.2.3)[3.3.0-alpha1,3.3.2)

Information Exposure

[3.0.0-alpha1,3.0.15)[3.1.0-alpha1,3.1.7)[3.2.0-alpha1,3.2.3)[3.3.0-alpha1,3.3.2)

Use After Free

[1.1.1,1.1.1y)[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)[3.3.0,3.3.1)

Uncontrolled Resource Consumption

[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)[3.3.0,3.3.1)

Uncontrolled Resource Consumption ('Resource Exhaustion')

[3.0.0,3.0.14)[3.1.0,3.1.6)[3.2.0,3.2.2)

Observable Timing Discrepancy

[,3.2.0)

NULL Pointer Dereference

[1.0.2,1.0.2zj)[1.1.1,1.1.1x)[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)

Resource Exhaustion

[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)

Use of a Broken or Risky Cryptographic Algorithm

[3.0.0,3.0.13)[3.1.0,3.1.5)[3.2.0,3.2.1)

Denial of Service (DoS)

[,3.2.0)

Missing Cryptographic Step

[3.0.0,3.0.12)[3.1.0,3.1.4)

Denial of Service (DoS)

[1.1.1,1.1.1w)[3.0.0,3.0.11)[3.1.0,3.1.3)

Denial of Service (DoS)

[1.0.2a,1.1.1v)[3.0.9,3.0.10)[3.1.0,3.1.2)

Denial of Service (DoS)

[1.0.2a,1.1.1v)[3.0.9,3.0.10)[3.1.0,3.1.2)

Insufficient Verification of Data Authenticity

[3.0.9,3.0.10)[3.1.0,3.1.2)

Buffer Over-read

[3.0.0,3.0.9)[3.1.0,3.1.1)

Denial of Service (DoS)

[1.0.2,1.0.2zh)[1.1.1,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)

Improper Certificate Validation

[1.1.0,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)

Improper Certificate Validation

[1.1.0,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)

Denial of Service (DoS)

[1.0.2a,1.1.1u)[3.0.0,3.0.9)[3.1.0,3.1.1)

Denial of Service (DoS)

[3.0.0,3.0.8)

Denial of Service (DoS)

[3.0.0,3.0.8)

Use After Free

[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)

Access of Resource Using Incompatible Type ('Type Confusion')

[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)

Timing Attack

[1.0.2a,1.0.2zg)[1.1.1,1.1.1t)[3.0.0,3.0.8)

Denial of Service (DoS)

[3.0.0,3.0.8)

Denial of Service (DoS)

[3.0.0,3.0.8)

Denial of Service (DoS)

[1.1.1,1.1.1t)[3.0.0,3.0.8)

Denial of Service (DoS)

[3.0.0,3.0.8)

[3.0.0,3.0.7)

[3.0.0,3.0.7)

[3.0.0,3.0.6)

[1.1.1,1.1.1q)[3.0.0,3.0.5)

Heap-based Buffer Overflow

[3.0.4,3.0.5)

Missing Release of Memory after Effective Lifetime

[3.0.0,3.0.3)

Key Management Errors

[3.0.0,3.0.3)

Arbitrary Command Injection

[1.0.2,1.0.2ze)[1.1.1,1.1.1o)[3.0.0,3.0.3)

Improper Certificate Validation

[3.0.0,3.0.3)

Infinite loop

[1.0.2,1.0.2zd)[1.1.1,1.1.1n)[3.0.0,3.0.2)

Denial of Service (DoS)

[,1.0.1e-25.el7]

Denial of Service (DoS)

[3.0.0,3.0.1)[1.1.0a,1.1.1)

Use After Free

[0,1.1.0b)

Denial of Service (DoS)

[,1.0.1q)[1.0.2,1.0.2e)

Denial of Service (DoS)

[0.9.7d,0.9.8]

Denial of Service (DoS)

[0.9.6,0.9.7]

CVE-2004-0975

[0.9.6d,0.9.7c]

Information Exposure

[,1.0.1u)[1.0.2,1.0.2i)

Denial of Service (DoS)

[,1.0.1t)[1.0.2,1.0.2h)

Resource Management Errors

[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)

Information Exposure

[,1.0.2e)

Resource Management Errors

[,0.9.8m)

Insecure Defaults

[1.0.0,1.0.0b)[,0.9.8q)

Out-of-Bounds

[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)

Integer Overflow or Wraparound

[0,1.1.1e)

Improper Input Validation

[0.9.8f,0.9.8m]

Out-of-Bounds

[0,1.0.1g)

Security Features

[,1.0.1p)[1.0.2,1.0.2d)

Resource Management Errors

[,1.0.1u)[1.0.2,1.0.2i)[1.1.0,1.1.0a)

Improper Input Validation

[0,1.0.1j)

Resource Management Errors

[,1.0.0]

Race Condition

[,1.0.0n)[1.0.1,1.0.1i)

Arbitrary Code Execution

[0.9.6d,0.9.7]

Improper Input Validation

[0,1.1.0e)

Out-of-bounds Read

[,1.0.1u)[1.0.2,1.0.2i)

Denial of Service (DoS)

[0,0.9.8w)

Resource Management Errors

[0.9.7,1.0.0a]

Out-of-bounds Read

[1.0.1m,1.1.1l)

Use of a Risky Cryptographic Algorithm

[,1.1.0k-dev)[1.1.1,1.1.1c-dev)

Key Management Errors

[,1.0.2p)[1.1.0,1.1.0i)

Insecure Defaults

[,1.0.0)

Improper Authentication

[,1.0.0c)

Cryptographic Issues

[,1.0.1s)[1.0.2,1.0.2g)

Denial of Service (DoS)

[,1.0.1s)[1.0.2,1.0.2g)

Denial of Service (DoS)

[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)

Access Restriction Bypass

[,1.0.0a)

Denial of Service (DoS)

[,0.9.6e]

Out-of-Bounds

[,0.9.7l)[0.9.8,0.9.8d)

Denial of Service (DoS)

[0.9.6d,0.9.7]

Out-of-Bounds

[0.9.6,0.9.7]

Denial of Service (DoS)

[,0.9.8zd)[1.0.0,1.0.0p)[1.0.1,1.0.1k)

Race Condition

[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)

Cryptographic Issues

[,0.9.8y)[1.0.0,1.0.0k)[1.0.1,1.0.1d)[1.2.0,1.2.5)[1.11.0,1.11.8)[1.12.0,1.12.3)[2.1.0,2.1.6)[2.2.0,2.2.6)[2.3.0,2.3.7)

Denial of Service (DoS)

[1.0.2,1.0.2h)[1.0.1,1.0.1t)

Denial Of Service (DoS)

[1.0.0,1.0.0f)[,0.9.8s)

Improper Input Validation

[,0.9.8j)

Cryptographic Issues

[,0.9.8j)

Integer Overflow or Wraparound

[,1.0.2y)[1.1.1,1.1.1j)

Cryptographic Issues

[1.0.1,1.0.1g)[1.0.0,1.0.0m)[,0.9.8za)

Denial of Service (DoS)

[,1.0.2i)

Use of a Risky Cryptographic Algorithm

[,1.0.2q-dev)[1.1.0,1.1.0j-dev)[1.1.1,1.1.1a-dev)

Resource Management Errors

[0.9.8h,1.0.0]

Denial of Service (DoS)

[,1.0.2e)

Denial of Service (DoS)

[0.9.8f,0.9.8g]

Denial of Service (DoS)

[0,1.0.2a)

Information Exposure

[0,1.0.2n)

Information Exposure

[,1.0.1s)[1.0.2,1.0.2g)

Resource Management Errors

[0.9.8f,0.9.8h]

Improper Access Control

[0,1.1.0c)

Improper Input Validation

[0,1.0.2a)

Denial of Service (DoS)

[0.9.6d,0.9.7]

Cryptographic Issues

[0,1.0.1d)

NULL Pointer Dereference

[0,1.1.0c)

NULL Pointer Dereference

[0,1.1.1i)

Cryptographic Issues

[1.0.0,1.0.0e)

Resource Management Errors

[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)

Improper Certificate Validation

[,1.0.2t)[1.1.0,1.1.0l)[1.1.1,1.1.1d)

NULL Pointer Dereference

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Out-of-Bounds

[1.0.1,1.0.1a)[1.0.0,1.0.0i)[,0.9.8v)

Cryptographic Issues

[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)

User Enumeration

[,1.1.0i)[1.1.0,1.1.1)

Denial of Service (DoS)

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Out-of-Bounds

[,0.9.8k)

Timing Attack

[0.9.6d,0.9.7]

Denial of Service (DoS)

[0.9.6d,0.9.7]

Improper Input Validation

[0,1.0.1f)

NULL Pointer Dereference

[,0.9.7l)[0.9.8,0.9.8d)

Resource Management Errors

[,0.9.7l)[0.9.8,0.9.8d)

Resource Management Errors

[,0.9.8s)

Race Condition

[,1.0.0t)[1.0.1,1.0.1p)[1.0.2,1.0.2d)

Cryptographic Issues

[0.9.8d,1.0.1]

Access Restriction Bypass

[0,1.0.0e)

Resource Management Errors

[1.0.2,1.0.2h)[1.0.1,1.0.1t)

Out-of-Bounds

[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)

Race Condition

[1.0.1,1.0.1h)[1.0.0,1.0.0m)

Improper Input Validation

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Improper Input Validation

[1.0.1,1.0.1j)[1.0.0,1.0.0o)[,0.9.8zc)

Out-of-Bounds

[1.0.2,1.0.2c)[1.0.1,1.0.1o)

Use of a Risky Cryptographic Algorithm

[1.1.1,1.1.1d)[1.1.0,1.1.0l)[1.0.2,1.0.2t)

Timing Attack

[,1.0.2)

Race Condition

[0.9.8f,1.0.0]

Cryptographic Issues

[,0.9.8)

Improper Certificate Validation

[1.1.1h,1.1.1k)

Denial of Service (DoS)

[0,1.0.2a)

Session Fixation

[,0.9.2b)

Use After Free

[,0.10.9)

Cryptographic Issues

[,0.9.8]

Resource Management Errors

[,0.9.7l)[0.9.8,0.9.8d)

Cryptographic Issues

[,0.9.8i]

Denial of Service (DoS)

[,0.9.6d)

Cryptographic Issues

[1.0.0,1.0.0a)[,0.9.8o)

User Enumeration

[0,1.0.2w)

Cryptographic Issues

[1.0.2,1.0.2h)[1.0.1,1.0.1t)

Resource Management Errors

[,0.9.8m)

Insecure Defaults

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Denial of Service (DoS)

[1.0.1,1.0.1c)[1.0.0,1.0.0j)[,0.9.8x)

Out-of-Bounds

[1.0.2,1.0.2t)[1.0.1,1.0.1t)

Information Exposure

[,1.0.2m)[1.1.0,1.1.0g)

Cryptographic Issues

[,1.0.0l)[1.0.1,1.0.1f)

Cryptographic Issues

[,0.9.8y)[1.0.0,1.0.0k)[1.0.1,1.0.1d)

CVE-2001-1141

[,0.9.6b)

Out-of-Bounds

[,1.0.0p)[1.0.1,1.0.1k)

Denial of Service (DoS)

[0,1.0.1i)

Resource Management Errors

[0,1.1.0a)

Information Exposure

[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)

Buffer Overflow

[1.1.0a,1.1.1l)

Improper Input Validation

[,1.0.1u)[1.0.2,1.0.2i)

Resource Management Errors

[,1.0.0e)

Denial Of Service (DoS)

[,0.9.8m)

Out-of-Bounds

[,0.9.8m)

Cryptographic Issues

[,1.1.0j)[1.1.1,1.1.1a)

Denial Of Service (DoS)

[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0e)[,0.9.8s)

Cryptographic Issues

[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)

Denial of Service (DoS)

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Cryptographic Issues

[,1.0.0p)[1.0.1,1.0.1k)

Information Exposure

[0.9.6d,0.9.7]

Denial of Service (DoS)

[,0.9.8f)

Denial of Service (DoS)

[,1.0.0m)[1.0.1,1.0.1h)

Improper Authentication

[0.9.8f,0.9.8g]

Denial of Service (DoS)

[,1.0.1s)[1.0.2,1.0.2g)

Code

[0,1.0.2a)

NULL Pointer Dereference

[0,1.1.0d)

Out-of-bounds Read

[,1.0.2k)[1.1.0,1.1.0d)

Information Exposure

[,0.9.6i)[0.9.7,0.9.7a)

Denial of Service (DoS)

[0,1.0.2a)

CVE-2005-2969

[,0.9.7h)[0.9.8,0.9.8a)

NULL Pointer Dereference

[1.1.1d,1.1.1g)

User Enumeration

[0,1.0.2r)

Information Exposure

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

NULL Pointer Dereference

[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)

Insecure Defaults

[1.1.1,1.1.1d)[1.1.0,1.1.0l)[1.0.2,1.0.2t)

Cryptographic Issues

[,0.9.8k)

Out-of-Bounds

[,1.0.2m)[1.1.0,1.1.0g)

Out-of-bounds Write

[,1.0.1u)[1.0.2,1.0.2i)

Denial of Service (DoS)

[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)

Denial of Service (DoS)

[0.9.6d,0.9.7]

CVE-2014-3511

[0,1.0.1i)

Cryptographic Issues

[,1.0.1r)[1.0.2,1.0.2f)

Improper Certificate Validation

[,0.9.0)

Denial of Service (DoS)

[0.9.6,0.9.7]

Resource Management Errors

[,1.0.1u)[1.0.2,1.0.2i)

NULL Pointer Dereference

[,0.9.8i)

Improper Input Validation

[,0.9.8n)

Insecure Encryption

[1.1.0a,1.1.1j)[1.0.2s,1.0.2y)

Denial Of Service

[1.0.0,1.0.0h)[,0.9.8u)

Cryptographic Issues

[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)

Insecure Randomness

[1.1.1,1.1.1d)

Insecure Encryption

[,0.9.8za)[1.0.0,1.0.0m)[1.0.1,1.0.1h)

Cryptographic Issues

[,0.9.8h)

Cryptographic Issues

[1.0.0,1.0.0h)[,0.9.8u)

Denial of Service (DoS)

[0.9.6d,0.9.7]

Improper Input Validation

[0,1.1.0a)

NULL Pointer Dereference

[1.1.0a,1.1.1k)

Cryptographic Issues

[0,1.0.2a)

Out-of-bounds Read

[0,1.0.2n)

Integer Overflow or Wraparound

[,1.0.1u)[1.0.2,1.0.2i)

Denial of Service (DoS)

[0,1.1.0a)

Denial Of Service (Dos)

[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)

Cryptographic Issues

[1.0.1,1.0.1k)[1.0.0,1.0.0p)[,0.9.8zd)

Cryptographic Issues

[1.0.1,1.0.1f)

Information Exposure

[,0.9.8zh)[1.0.0,1.0.0t)[1.0.1,1.0.1q)[1.0.2,1.0.2e)

Access Restriction Bypass

[,0.9.8l)

Cryptographic Issues

[1.0.0,1.0.0f)[,0.9.8s)

Denial Of Service (Dos)

[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)

Cryptographic Issues

[0.9.8,0.9.8c)[0.9.7,0.9.7k)

Improper Input Validation

[,0.9.8m)

Insecure Defaults

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Information Exposure

[,1.0.2f)

Arbitrary Code Execution

[,0.9.7-beta3)

Improper Authentication

[,0.9.6]

Resource Management Errors

[,0.9.8zb)[1.0.0,1.0.0n)[1.0.1,1.0.1i)

Out-of-bounds Read

[,1.0.1u)[1.0.2,1.0.2i)

Resource Management Errors

[,1.0.1s)[1.0.2,1.0.2g)

Denial of Service (DoS)

[,1.0.1u)[1.0.2,1.0.2i)

NULL Pointer Dereference

[0,1.0.2j)

Denial Of Service (DoS)

[,0.9.8u)

Information Exposure

[1.0.2,1.0.2a)[1.0.1,1.0.1m)[1.0.0,1.0.0r)[,0.9.8zf)

Cryptographic Issues

[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)

Integer Overflow or Wraparound

[,1.0.2y)[1.1.1,1.1.1j)

Denial of Service (DoS)

[,0.9.8k)

Cryptographic Issues

[1.0.1,1.0.1h)[1.0.2,1.0.2b)

Out-of-Bounds

[1.0.2,1.0.2b)[1.0.1,1.0.1n)[1.0.0,1.0.0s)[,0.9.8zg)

Out-of-bounds Write

[,1.1.0)

Key Management Errors

[,1.0.2k)[1.1.0,1.1.0c)

CVE-2000-0535

[,0.9.4]

Out-of-Bounds

[,1.0.1s)[1.0.2,1.0.2g)

Improper Authentication

[0.9.8h,0.9.8j]

Resource Management Errors

[0.9.8s,1.0.0f]

Out-of-Bounds

[0,1.0.1i)

Information Exposure

[,1.0.2k)[1.1.0,1.1.0d)

Out-of-Bounds

[,1.0.1s)[1.0.2,1.0.2g)

CVE-2003-0147

[0.9.6d,0.9.7]

Cryptographic Issues

[,0.9.6)

Cryptographic Issues

[1.0.0,1.0.0f)[,0.9.8s)

Insecure Defaults

[0,1.1.0h)

Cryptographic Issues

[,0.9.8m)

Buffer Overflow

[,1.0.2o)[1.1.0,1.1.0h)

Cryptographic Issues

[,1.0.2p)[1.1.0,1.1.0i)

Out-of-Bounds

[1.0.1,1.0.1h)[1.0.0,1.0.0m)[,0.9.8za)

Denial Of Service (DoS)

[,1.0.0f)

Resource Management Errors

[1.0.0,1.0.0f)[,0.9.8s)

Cryptographic Issues

[1.0.1,1.0.1j)[1.0.0,1.0.0o)[,0.9.8zc)

Information Exposure

[1.0.1d,1.0.2c]

openssl vulnerabilities

licenses detected

Direct Vulnerabilities

How to fix?