Lucene search
SuseSUSE-SA:2010:020HistoryApr 06, 2010 - 4:55 p.m.
remote denial of service, man in the middle in openssl
2010-04-0616:55:06
lists.opensuse.org
22
0.012 Low
EPSS
Percentile
85.5%
The openSSL library was updated to add support for the new RFC5746 TLS renegotiation feature to address vulnerabilities tracked as CVE-2009-3555, backported from openssl 0.9.8m.
Solution
There is no known workaround, please install the update packages.
Related
nessus
nessus
SuSE9 Security Update : OpenSSL (YOU Patch Number 12606)
2010-04-02 00:00:00
OpenSSL < 0.9.8m Multiple Vulnerabilities
2010-03-09 00:00:00
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 6943)
2010-03-31 00:00:00
redhat
redhat
(RHSA-2010:0162) Important: openssl security update
2010-03-25 00:00:00
(RHSA-2010:0173) Important: openssl096b security update
2010-03-25 00:00:00
(RHSA-2010:0164) Moderate: openssl097a security update
2010-03-25 00:00:00
openvas
openvas
CentOS Update for openssl CESA-2010:0162 centos5 i386
2011-08-09 00:00:00
RedHat Update for openssl RHSA-2010:0162-01
2010-03-31 00:00:00
RedHat Update for openssl RHSA-2010:0162-01
2010-03-31 00:00:00
centos
centos
openssl security update
2010-03-27 17:30:13
openssl096b security update
2010-03-25 22:40:26
nspr, nss security update
2010-03-28 15:36:50
oraclelinux
oraclelinux
openssl security update
2010-03-25 00:00:00
openssl096b security update
2010-03-25 00:00:00
openssl097a security update
2010-03-25 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:076-1 ] openssl
2010-04-22 00:00:00
[ MDVSA-2009:295 ] apache
2009-11-09 00:00:00
SSL data injection
2010-02-10 00:00:00
f5
f5
SOL15404 - OpenSSL vulnerability CVE-2009-3245
2014-07-14 00:00:00
K15404 : OpenSSL vulnerability CVE-2009-3245
2014-07-14 00:00:00
K10737 : SSL Renegotiation vulnerability - CVE-2009-3555 / VU#120541
2013-07-05 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:45:17
Man-in-the-Middle (MitM)
2020-04-10 00:36:56
nvd
nvd
CVE-2009-3245
2010-03-05 19:30:00
CVE-2009-3555
2009-11-09 17:30:00
ubuntucve
ubuntucve
CVE-2009-3245
2010-03-05 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2009-3245
2010-02-23 00:00:00
cvelist
cvelist
CVE-2009-3245
2010-03-05 19:00:00
CVE-2009-3555
2009-11-09 17:00:00
prion
prion
Design/Logic Flaw
2010-03-05 19:30:00
cve
cve
CVE-2009-3245
2010-03-05 19:30:00
CVE-2009-3555
2009-11-09 17:30:00
debiancve
debiancve
CVE-2009-3245
2010-03-05 19:30:00
fedora
fedora
[SECURITY] Fedora 12 Update: openssl-1.0.0-4.fc12
2010-05-25 18:42:18
[SECURITY] Fedora 12 Update: proftpd-1.3.2c-1.fc12
2009-12-27 20:24:34
[SECURITY] Fedora 12 Update: tomcat-native-1.1.18-1.fc12
2009-12-18 04:35:37
seebug
seebug
TLS Renegotiation Vulnerability PoC Exploit
2009-12-21 00:00:00
ProFTPD TLS会话重协商明文数据注入漏洞
2009-12-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8l-alt1
2009-11-07 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 0.9.8l-alt1
2009-11-07 00:00:00
slackware
slackware
openssl
2009-11-16 13:42:36
ubuntu
ubuntu
NSS vulnerability
2010-04-09 00:00:00
nss vulnerability
2010-06-29 00:00:00
NSS vulnerability
2010-07-23 00:00:00
hackerone
hackerone
Slack: TLS1/SSLv3 Renegotiation Vulnerability
2014-04-02 13:01:00
LocalTapiola: Secure Client-Initiated Renegotiation
2017-12-27 15:57:52
debian
debian
[SECURITY] [DSA-2141-2] New nss packages fix protocol design flaw
2011-01-05 23:20:31
[SECURITY] [DSA-2141-2] New nss packages fix protocol design flaw
2011-01-05 23:20:31
cisco
cisco
Transport Layer Security Renegotiation Vulnerability
2009-11-09 13:00:00
fortinet
fortinet
FortiOS SSL Deep-Inspection possible Insecure Renegotiation
2017-11-03 00:00:00
mozilla
mozilla
Update NSS to support TLS renegotiation indication — Mozilla
2010-03-30 00:00:00
suse
suse
man-in-the-middle attack in openssl
2009-11-18 09:50:39
checkpoint_advisories
checkpoint_advisories
TLS Renegotiation (CVE-2009-3555)
2009-11-22 00:00:00
packetstorm
packetstorm
TLS Renegotiation Exploit
2009-12-21 00:00:00