Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-33-1:85002
HistoryAug 07, 2014 - 8:36 p.m.

[DLA 33-1] openssl security update

2014-08-0720:36:09
lists.debian.org
23

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

Low

0.928 High

EPSS

Percentile

99.0%

JSON

Package : openssl
Version : 0.9.8o-4squeeze17
CVE ID : CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508
CVE-2014-3510

Detailed descriptions of the vulnerabilities can be found at:
https://www.openssl.org/news/secadv_20140806.txt

It's important that you upgrade the libssl0.9.8 package and not just
the openssl package.

All applications linked to openssl need to be restarted. You can use
the "checkrestart" tool from the debian-goodies package to detect
affected programs. Alternatively, you may reboot your system.

Attachment:
signature.asc
Description: Digital signature

OSVersionArchitecturePackageVersionFilename
Debian7mipsellibssl1.0.0< 1.0.1e-2+deb7u12libssl1.0.0_1.0.1e-2+deb7u12_mipsel.deb
Debian7kfreebsd-i386libcrypto1.0.0-udeb< 1.0.1e-2+deb7u12libcrypto1.0.0-udeb_1.0.1e-2+deb7u12_kfreebsd-i386.deb
Debian7mipslibssl1.0.0-dbg< 1.0.1e-2+deb7u12libssl1.0.0-dbg_1.0.1e-2+deb7u12_mips.deb
Debian7mipslibssl1.0.0< 1.0.1e-2+deb7u12libssl1.0.0_1.0.1e-2+deb7u12_mips.deb
Debian7s390xopenssl< 1.0.1e-2+deb7u12openssl_1.0.1e-2+deb7u12_s390x.deb
Debian7armelopenssl< 1.0.1e-2+deb7u12openssl_1.0.1e-2+deb7u12_armel.deb
Debian7powerpclibssl-dev< 1.0.1e-2+deb7u12libssl-dev_1.0.1e-2+deb7u12_powerpc.deb
Debian7kfreebsd-i386openssl< 1.0.1e-2+deb7u12openssl_1.0.1e-2+deb7u12_kfreebsd-i386.deb
Debian7ia64libssl1.0.0-dbg< 1.0.1e-2+deb7u12libssl1.0.0-dbg_1.0.1e-2+deb7u12_ia64.deb
Debian7powerpcopenssl< 1.0.1e-2+deb7u12openssl_1.0.1e-2+deb7u12_powerpc.deb
Rows per page:
1-10 of 781

Related

openvas 29
ibm 35
nessus 43
redhat 3
oraclelinux 4
f5 6
centos 2
slackware 1
freebsd 1
aix 1
mageia 1
amazon 1
huawei 1
ubuntu 1
kaspersky 1
securityvulns 2
debian 1
osv 1
freebsd_advisory 1
fedora 8
altlinux 5
gentoo 1
cve 6
checkpoint_advisories 5
ubuntucve 5
veracode 6
openssl 5
prion 6
debiancve 5
cvelist 6
nvd 6
openvas
openvas
Debian: Security Advisory (DLA-33-1)
2023-03-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1104-1)
2021-06-09 00:00:00
OpenSSL Multiple Vulnerabilities (20140806 - 1) - Windows
2021-07-19 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in Open SSL affects IBM System Networking products
2019-01-31 01:45:01
Security Bulletin: OpenSSL security vulnerabilities in IBM SONAS (CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511)
2018-06-18 00:08:42
Security Bulletin: Multiple potential vulnerabilities in OpenSSL fixed in Chassis Management Module (CMM) (CVE-2014-3509, CVE-2014-3506, CVE-2014-3507, CVE-2014-3511, CVE-2014-3505, CVE-2014-3510, CVE-2014-3508)
2019-01-31 01:35:01
nessus
nessus
OpenSSL 0.9.8 < 0.9.8zb Multiple Vulnerabilities
2014-08-08 00:00:00
SuSE 11.3 Security Update : OpenSSL (SAT Patch Number 9598)
2014-08-21 00:00:00
Debian DLA-33-1 : openssl security update
2015-03-26 00:00:00
redhat
redhat
(RHSA-2014:1052) Moderate: openssl security update
2014-08-13 00:00:00
(RHSA-2014:1053) Moderate: openssl security update
2014-08-13 00:00:00
(RHSA-2014:1054) Moderate: openssl security update
2014-08-14 00:00:00
oraclelinux
oraclelinux
openssl security update
2014-08-13 00:00:00
openssl security update
2014-08-13 00:00:00
openssl security update
2014-10-16 00:00:00
f5
f5
K15573 : OpenSSL DTLS vulnerabilities CVE-2014-3505, CVE-2014-3506, and CVE-2014-3507
2015-09-15 00:00:00
SOL15573 - OpenSSL DTLS vulnerabilities CVE-2014-3505, CVE-2014-3506, and CVE-2014-3507
2014-09-05 00:00:00
K15568 : OpenSSL vulnerability CVE-2014-3510
2015-09-11 00:00:00
centos
centos
openssl security update
2014-08-13 19:52:24
openssl security update
2014-08-13 20:10:43
slackware
slackware
[slackware-security] openssl
2014-08-08 21:22:00
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2014-08-06 00:00:00
aix
aix
AIX OpenSSL Denial of Service due to double free and others
2014-09-09 00:50:00
mageia
mageia
Updated openssl packages fix security vulnerabilities
2014-08-12 13:16:46
amazon
amazon
Medium: openssl
2014-08-07 12:26:00
huawei
huawei
Security Advisory-9 OpenSSL vulnerabilities on Huawei products
2014-10-08 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2014-08-07 00:00:00
kaspersky
kaspersky
KLA10343 Multiple vulnerabilities in Stunnel
2014-08-07 00:00:00
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2014-08-07 00:00:00
Qualys Security Advisory - LibreSSL &#40;CVE-2015-5333 and CVE-2015-5334&#41;
2015-10-19 00:00:00
debian
debian
[SECURITY] [DSA 2998-1] openssl security update
2014-08-06 23:44:13
osv
osv
openssl - security update
2014-08-07 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:18.openssl
2014-09-09 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mingw-openssl-1.0.1j-1.fc21
2015-01-02 05:06:53
[SECURITY] Fedora 20 Update: openssl-1.0.1e-39.fc20
2014-08-09 07:36:05
[SECURITY] Fedora 19 Update: openssl-1.0.1e-39.fc19
2014-08-09 07:34:58
altlinux
altlinux
Security fix for the ALT Linux 7 package openssl10 version 1.0.1j-alt0.M70P.1
2014-10-31 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.1j-alt1
2014-10-30 00:00:00
Security fix for the ALT Linux 7 package openssl10 version 1.0.1j-alt1
2014-10-30 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2014-12-26 00:00:00
cve
cve
CVE-2014-3505
2014-08-13 23:55:07
CVE-2014-3510
2014-08-13 23:55:07
CVE-2014-3508
2014-08-13 23:55:07
checkpoint_advisories
checkpoint_advisories
OpenSSL dtls1_process_out_of_seq_message Denial of Service (CVE-2014-3507)
2014-10-07 00:00:00
OpenSSL DTLS Handshake Double Free (CVE-2014-3505)
2014-09-30 00:00:00
OpenSSL DTLS Handshake Memory Exhaustion (CVE-2014-3506)
2014-09-28 00:00:00
ubuntucve
ubuntucve
CVE-2014-3505
2014-08-07 00:00:00
CVE-2014-3507
2014-08-07 00:00:00
CVE-2014-3506
2014-08-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:59:12
Denial Of Service (DoS)
2017-02-07 01:37:14
Denial Of Service (DoS) Through Null Pointer Dereference
2017-02-07 01:02:25
openssl
openssl
Vulnerability in OpenSSL CVE-2014-3505
2014-08-06 00:00:00
Vulnerability in OpenSSL CVE-2014-3507
2014-08-06 00:00:00
Vulnerability in OpenSSL CVE-2014-3506
2014-08-06 00:00:00
prion
prion
Double free
2014-08-13 23:55:00
Design/Logic Flaw
2014-08-13 23:55:00
Design/Logic Flaw
2014-08-13 23:55:00
debiancve
debiancve
CVE-2014-3505
2014-08-13 23:55:07
CVE-2014-3507
2014-08-13 23:55:07
CVE-2014-3510
2014-08-13 23:55:07
cvelist
cvelist
CVE-2014-3506
2014-08-13 23:00:00
CVE-2014-3505
2014-08-13 23:00:00
CVE-2014-3507
2014-08-13 23:00:00
nvd
nvd
CVE-2014-3505
2014-08-13 23:55:07
CVE-2014-3507
2014-08-13 23:55:07
CVE-2014-3508
2014-08-13 23:55:07

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

Low

0.928 High

EPSS

Percentile

99.0%

JSON
Related for DEBIAN:DLA-33-1:85002
openvas29ibm35nessus43redhat3oraclelinux4f56centos2slackware1freebsd1aix1mageia1amazon1huawei1ubuntu1kaspersky1securityvulns2debian1osv1freebsd_advisory1fedora8altlinux5gentoo1cve6checkpoint_advisories5ubuntucve5veracode6openssl5prion6debiancve5cvelist6nvd6