pkg:Alpine/openssl
共 112 筆 CVECRITICAL9HIGH48MEDIUM53LOW2
✅ 檢查你的版本
所有已知漏洞
- CRITICAL9.8CVE-2026-31789Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platfor…from 0, < 3.3.7-r0
- from 0, < 3.0.7-r0
- from 0, < 0
- from 0, < 1.1.1l-r0
- CRITICAL9.8CVE-2016-6303Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of…from 0, < 1.0.2h-r3
- CRITICAL9.8CVE-2016-2182The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote att…from 0, < 1.0.2h-r3
- from 0, < 1.0.2h-r1
- CRITICAL9.1CVE-2024-5535Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or…from 0, < 3.0.14-r0
- from 0, < 3.0.8-r0
- from 0, < 3.0.19-r0
- HIGH8.2CVE-2016-2176The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain…from 0, < 1.0.2h-r0
- HIGH8.1CVE-2026-28387Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authentication, when paired with uncommon server DANE…from 0, < 3.3.7-r0
- HIGH7.8CVE-2023-4807Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applic…from 0, < 0
- HIGH7.5CVE-2026-31790Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key can send contents of an uninitialized memor…from 0, < 3.3.7-r0
- HIGH7.5CVE-2026-28390Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo a NULL pointer dereference can happe…from 0, < 3.3.7-r0
- HIGH7.5CVE-2026-28389Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen.from 0, < 3.3.7-r0
- HIGH7.5CVE-2026-28388Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the r…from 0, < 3.3.7-r0
- HIGH7.5CVE-2025-69421Issue summary: Processing a malformed PKCS#12 file can trigger a NULL pointer dereference in the PKCS12_item_decrypt_d2i_ex() function.from 0, < 3.0.19-r0
- HIGH7.5CVE-2025-69420Issue summary: A type confusion vulnerability exists in the TimeStamp Response verification code where an ASN1_TYPE union member is accesse…from 0, < 3.0.19-r0
- from 0, < 3.0.19-r0
- HIGH7.5CVE-2024-4741Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed that was previously freed in some situatio…from 0, < 3.0.14-r0
- from 0, < 3.0.15-r0
- from 0, < 3.0.12-r0
- from 0, < 1.1.1t-r1
- from 0, < 1.1.1t-r0
- from 0, < 3.0.8-r0
- from 0, < 1.1.1t-r0
- from 0, < 3.0.8-r0
- from 0, < 3.0.8-r0
- from 0, < 3.0.7-r2
- from 0, < 3.0.7-r0
- from 0, < 3.0.6-r0
- from 0, < 1.1.1q-r0
- from 0, < 3.0.3-r0
- from 0, < 1.1.1n-r0
- from 0, < 3.0.1-r0
- from 0, < 1.1.1j-r0
- from 0, < 1.1.1g-r0
- from 0, < 1.0.2o-r1
- HIGH7.5CVE-2017-3731If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that ser…from 0, < 1.0.2k-r0
- HIGH7.5CVE-2016-7052crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application cra…from 0, < 1.0.2j-r0
- HIGH7.5CVE-2016-6304Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a…from 0, < 1.0.2i-r0
- HIGH7.5CVE-2016-6302The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket len…from 0, < 1.0.2h-r3
- HIGH7.5CVE-2016-2181The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a…from 0, < 1.0.2h-r4
- HIGH7.5CVE-2016-2179The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-orde…from 0, < 1.0.2h-r3
- HIGH7.5CVE-2016-2183The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of app…from 0, < 1.0.2i-r0
- HIGH7.5CVE-2016-2180The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in Open…from 0, < 1.0.2h-r2
- HIGH7.5CVE-2016-2109The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h a…from 0, < 1.0.2h-r0
- HIGH7.5CVE-2016-2106Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote a…from 0, < 1.0.2h-r0
- from 0, < 1.0.2h-r0
- HIGH7.4CVE-2025-69419Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file with a BMPString (UTF-16BE) friendly name c…from 0, < 3.0.19-r0
- from 0, < 1.1.1t-r0
- from 0, < 1.1.1l-r0
- from 0, < 1.1.1k-r0
- from 0, < 1.1.1b-r1
- from 0, < 0
- from 0, < 0
- MEDIUM6.5CVE-2026-2673Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group config…from 0, < 3.5.6-r0
- MEDIUM6.5CVE-2025-9231Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implement…from 0, < 0
- MEDIUM6.5CVE-2025-4575Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate.from 0, < 3.5.1-r0
- MEDIUM6.5CVE-2023-6129Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applic…from 0, < 3.0.12-r2
- MEDIUM6.5CVE-2023-2650Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow.from 0, < 1.1.1u-r0
- from 0, < 1.0.2o-r0
- MEDIUM6.5CVE-2017-3736There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g.from 0, < 1.0.2m-r0
- from 0, < 3.3.3-r0
- MEDIUM6.1CVE-2025-11187Issue summary: PBMAC1 parameters in PKCS#12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer o…from 0, < 3.5.5-r0
- MEDIUM5.9CVE-2025-66199Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without che…from 0, < 3.3.6-r0
- MEDIUM5.9CVE-2025-15468Issue summary: If an application using the SSL_CIPHER_find() function in a QUIC protocol client or server receives an unknown cipher suite…from 0, < 3.3.6-r0
- MEDIUM5.9CVE-2025-9232Issue summary: An application using the OpenSSL HTTP client API functions may trigger an out-of-bounds read if the 'no_proxy' environment v…from 0, < 3.0.19-r0
- MEDIUM5.9CVE-2023-6237Issue summary: Checking excessively long invalid RSA public keys may take a long time.from 0, < 3.0.12-r3
- MEDIUM5.9CVE-2024-2511Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary…from 0, < 3.0.12-r5
- MEDIUM5.9CVE-2023-1255Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the inp…from 0, < 3.0.8-r4
- from 0, < 1.1.1t-r0
- from 0, < 3.0.3-r0
- from 0, < 1.1.1k-r0
- from 0, < 1.1.1j-r0
- from 0, < 1.1.1i-r0
- from 0, < 1.0.2r-r0
- MEDIUM5.9CVE-2018-0734The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack.from 0, < 1.1.1a-r0
- from 0, < 1.1.1a-r0
- MEDIUM5.9CVE-2018-0737The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack.from 0, < 1.0.2o-r1
- MEDIUM5.9CVE-2018-0733Because of an implementation bug the PA-RISC CRYPTO_memcmp function is effectively reduced to only comparing the least significant bit of e…from 0, < 1.0.2o-r0
- MEDIUM5.9CVE-2017-3738There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli.from 0, < 1.0.2n-r0
- from 0, < 1.0.2n-r0
- MEDIUM5.9CVE-2016-7055There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c tha…from 0, < 1.0.2k-r0
- MEDIUM5.9CVE-2017-3732There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d.from 0, < 1.0.2k-r0
- MEDIUM5.9CVE-2016-6306The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-b…from 0, < 1.0.2i-r0
- MEDIUM5.9CVE-2016-2107The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding che…from 0, < 1.0.2h-r0
- MEDIUM5.5CVE-2026-22795Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS#12 file.from 0, < 3.0.19-r0
- MEDIUM5.5CVE-2025-15469Issue summary: The 'openssl dgst' command-line tool silently truncates input data to 16MB when using one-shot signing algorithms and report…from 0, < 3.5.5-r0
- from 0, < 3.0.12-r4
- MEDIUM5.5CVE-2016-2178The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations…from 0, < 1.0.2h-r1
- MEDIUM5.3CVE-2026-22796Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS#7 data where an ASN1_TYPE union member is…from 0, < 3.0.19-r0
- MEDIUM5.3CVE-2024-4603Issue summary: Checking excessively long DSA keys or parameters may be very slow.from 0, < 3.0.13-r0
- from 0, < 1.1.1w-r1
- MEDIUM5.3CVE-2023-3817Issue summary: Checking excessively long DH keys or parameters may be very slow.from 0, < 1.1.1v-r0
- from 0, < 1.1.1u-r2
- MEDIUM5.3CVE-2023-2975Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenti…from 0, < 3.0.9-r2
- MEDIUM5.3CVE-2023-0466The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy check when doing certificate verific…from 0, < 3.0.8-r3
- MEDIUM5.3CVE-2023-0465Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent cer…from 0, < 1.1.1t-r2
- from 0, < 3.0.3-r0
- from 0, < 1.1.1d-r2
- from 0, < 1.1.1d-r0
- from 0, < 1.0.2m-r0
- from 0, < 3.0.19-r0
- from 0, < 1.1.1d-r0
- MEDIUM4.7CVE-2018-5407Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel…from 0, < 1.0.2q-r0
- MEDIUM4.3CVE-2024-9143Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-…from 0, < 3.0.15-r1
- from 0, < 3.0.19-r0
- MEDIUM4.0CVE-2025-69418Issue summary: When using the low-level OCB API directly with AES-NI or<br>other hardware-accelerated code paths, inputs whose length is no…from 0, < 3.0.19-r0
- from 0, < 1.1.1j-r0
- LOW3.7CVE-2019-1563In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sendin…from 0, < 1.1.1d-r0