Lucene search
Veracode Vulnerability DatabaseVERACODE:35511HistoryMay 13, 2022 - 8:43 a.m.
Denial Of Service (DoS)
2022-05-1308:43:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.003 Low
EPSS
Percentile
69.2%
openssl3 is vulnerable to denial of service. The vulnerability exists because the OPENSSL_LH_flush function reuses the memory occupied by the removed hash table entries, allowing an attacker to cause an application crash.
References
cert-portal.siemens.com/productcert/pdf/ssa-953464.pdf
git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=64c85430f95200b6b51fe9475bd5203f7c19daf1
secdb.alpinelinux.org/edge/main.yaml
secdb.alpinelinux.org/v3.15/main.yaml
security.gentoo.org/glsa/202210-02
security.netapp.com/advisory/ntap-20220602-0009/
www.openssl.org/news/secadv/20220503.txt
Related
redhatcve
redhatcve
CVE-2022-1473
2022-05-18 22:42:59
rustsec
rustsec
Resource leakage when decoding certificates and keys
2022-05-03 12:00:00
f5
f5
K00334558 : OpenSSL vulnerability CVE-2022-1473
2022-06-02 00:00:00
K00053434 : OPENSSL_LH_flush() function vulnerability CVE-2022-1473
2022-05-28 00:00:00
alpinelinux
alpinelinux
CVE-2022-1473
2022-05-03 16:15:18
openssl
openssl
Vulnerability in OpenSSL CVE-2022-1473
2022-05-03 00:00:00
osv
osv
CVE-2022-1473
2022-05-03 16:15:18
Resource leakage when decoding certificates and keys
2022-05-03 12:00:00
Resource leakage when decoding certificates and keys
2022-05-04 00:00:22
nvd
nvd
CVE-2022-1473
2022-05-03 16:15:18
prion
prion
Design/Logic Flaw
2022-05-03 16:15:00
cvelist
cvelist
CVE-2022-1473 Resource leakage when decoding certificates and keys
2022-05-03 00:00:00
ubuntucve
ubuntucve
CVE-2022-1473
2022-05-03 00:00:00
github
github
Resource leakage when decoding certificates and keys
2022-05-04 00:00:22
debiancve
debiancve
CVE-2022-1473
2022-05-03 16:15:18
cve
cve
CVE-2022-1473
2022-05-03 16:15:18
openvas
openvas
Ubuntu: Security Advisory (USN-5402-2)
2022-08-26 00:00:00
OpenSSL: Multiple Vulnerabilities (May 2022) - Linux
2022-05-04 00:00:00
Ubuntu: Security Advisory (USN-5402-1)
2022-05-05 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2022-05-26 00:00:00
OpenSSL vulnerabilities
2022-05-04 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : OpenSSL vulnerabilities (USN-5402-2)
2022-05-27 00:00:00
Juniper Junos OS Multiple Vulnerabilities (JSA70186)
2023-07-20 00:00:00
ibm
ibm
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2022-05-03 00:00:00
ics
ics
Siemens Brownfield Connectivity Client
2023-02-16 12:00:00
βSiemens SINAMICS Medium Voltage Products
2023-06-15 12:00:00
Siemens SCALANCE, RUGGEDCOM Third-Party
2023-03-16 12:00:00
cloudfoundry
cloudfoundry
USN-5402-1: OpenSSL vulnerabilities | Cloud Foundry
2022-07-29 00:00:00
nodejsblog
nodejsblog
OpenSSL update assessment, and Node.js project plans
2022-05-05 00:00:00
redos
redos
ROS-20220524-01
2022-05-24 00:00:00
oraclelinux
oraclelinux
openssl security update
2022-08-31 00:00:00
openssl security and bug fix update
2022-08-30 00:00:00
almalinux
almalinux
Moderate: openssl security and bug fix update
2022-08-30 00:00:00
redhat
redhat
(RHSA-2022:6224) Moderate: openssl security and bug fix update
2022-08-30 15:46:32
suse
suse
Security update for openssl-3 (important)
2022-07-06 00:00:00
gentoo
gentoo
OpenSSL: Multiple Vulnerabilities
2022-10-16 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-4.0-0185
2022-05-18 00:00:00