rpm package

opensuse/openssl-3&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/openssl-3&distro=openSUSE%20Tumbleweed

Vulnerabilities (68)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-9230	Hig	7.5	< 3.5.3-2.1	3.5.3-2.1	Sep 30, 2025	Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds
CVE-2025-27587	Med	5.3	< 3.5.0-3.1	3.5.0-3.1	Jun 16, 2025	OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable to a Minerva attack, exploitable by measuring the time of signing of random messages using the EVP_DigestSign API, and then using the private key to extract the K value (nonce) from the signatures. Next, based
CVE-2025-4575		—	< 3.5.0-3.1	3.5.0-3.1	May 22, 2025	Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that u
CVE-2024-12797	Med	6.3	< 3.2.4-1.1	3.2.4-1.1	Feb 11, 2025	Issue summary: Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abort as expected when the SSL_VERIFY_PEER verification mode is set. Impact summary: TLS and DTLS connections u
CVE-2024-13176	Med	4.1	< 3.2.3-4.1	3.2.3-4.1	Jan 20, 2025	Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA signature computations could allow recovering the private key by an attacker. However, measurin
CVE-2024-4741	Hig	7.5	< 3.1.4-11.1	3.1.4-11.1	Nov 13, 2024	Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed that was previously freed in some situations Impact summary: A use after free can have a range of potential consequences such as the corruption of valid data, crashes or execution of
CVE-2024-9143	Med	4.3	< 3.1.4-15.1	3.1.4-15.1	Oct 16, 2024	Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Impact summary: Out of bound memory writes can lead to an application crash or even a possibility of a remote
CVE-2024-6119	Hig	7.5	< 3.1.4-13.1	3.1.4-13.1	Sep 3, 2024	Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can
CVE-2024-41996	Hig	7.5	< 3.1.4-14.1	3.1.4-14.1	Aug 26, 2024	Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause a
CVE-2024-5535	Cri	9.1	< 3.1.4-11.1	3.1.4-11.1	Jun 27, 2024	Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected appl
CVE-2024-4603	Med	5.3	< 3.1.4-8.1	3.1.4-8.1	May 16, 2024	Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions EVP_PKEY_param_check() or EVP_PKEY_public_check() to check a DSA public key or DSA parameters may experience long delays. Where the key or parame
CVE-2023-6237	Med	5.9	< 3.1.4-3.1	3.1.4-3.1	Apr 25, 2024	Issue summary: Checking excessively long invalid RSA public keys may take a long time. Impact summary: Applications that use the function EVP_PKEY_public_check() to check RSA public keys may experience long delays. Where the key that is being checked has been obtained from an un
CVE-2024-2511	Med	5.9	< 3.1.4-6.1	3.1.4-6.1	Apr 8, 2024	Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This prob
CVE-2023-50782		—	< 3.1.4-15.1	3.1.4-15.1	Feb 5, 2024	A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
CVE-2024-0727	Med	5.5	< 3.1.4-4.1	3.1.4-4.1	Jan 26, 2024	Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can c
CVE-2023-6129	Med	6.5	< 3.1.4-3.1	3.1.4-3.1	Jan 9, 2024	Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications running on PowerPC CPU based platforms if the CPU provides vector instructions. Impact summary: If an attacker can influence whether
CVE-2023-5678	Med	5.3	< 3.1.4-2.1	3.1.4-2.1	Nov 6, 2023	Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applicatio
CVE-2023-5363	Hig	7.5	< 3.1.4-1.1	3.1.4-1.1	Oct 25, 2023	Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness,
CVE-2023-4807		—	< 3.1.3-1.2	3.1.3-1.2	Sep 8, 2023	Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X86_64 processors supporting the AVX512-IFMA instructions. Impact summary: If in an
CVE-2023-3817		—	< 3.1.2-1.1	3.1.2-1.1	Jul 31, 2023	Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters tha

CVE-2025-9230HigSep 30, 2025
affected < 3.5.3-2.1fixed 3.5.3-2.1
Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds
CVE-2025-27587MedJun 16, 2025
affected < 3.5.0-3.1fixed 3.5.0-3.1
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable to a Minerva attack, exploitable by measuring the time of signing of random messages using the EVP_DigestSign API, and then using the private key to extract the K value (nonce) from the signatures. Next, based
CVE-2025-4575May 22, 2025
affected < 3.5.0-3.1fixed 3.5.0-3.1
Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that u
CVE-2024-12797MedFeb 11, 2025
affected < 3.2.4-1.1fixed 3.2.4-1.1
Issue summary: Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abort as expected when the SSL_VERIFY_PEER verification mode is set. Impact summary: TLS and DTLS connections u
CVE-2024-13176MedJan 20, 2025
affected < 3.2.3-4.1fixed 3.2.3-4.1
Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA signature computations could allow recovering the private key by an attacker. However, measurin
CVE-2024-4741HigNov 13, 2024
affected < 3.1.4-11.1fixed 3.1.4-11.1
Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed that was previously freed in some situations Impact summary: A use after free can have a range of potential consequences such as the corruption of valid data, crashes or execution of
CVE-2024-9143MedOct 16, 2024
affected < 3.1.4-15.1fixed 3.1.4-15.1
Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Impact summary: Out of bound memory writes can lead to an application crash or even a possibility of a remote
CVE-2024-6119HigSep 3, 2024
affected < 3.1.4-13.1fixed 3.1.4-13.1
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can
CVE-2024-41996HigAug 26, 2024
affected < 3.1.4-14.1fixed 3.1.4-14.1
Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause a
CVE-2024-5535CriJun 27, 2024
affected < 3.1.4-11.1fixed 3.1.4-11.1
Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected appl
CVE-2024-4603MedMay 16, 2024
affected < 3.1.4-8.1fixed 3.1.4-8.1
Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions EVP_PKEY_param_check() or EVP_PKEY_public_check() to check a DSA public key or DSA parameters may experience long delays. Where the key or parame
CVE-2023-6237MedApr 25, 2024
affected < 3.1.4-3.1fixed 3.1.4-3.1
Issue summary: Checking excessively long invalid RSA public keys may take a long time. Impact summary: Applications that use the function EVP_PKEY_public_check() to check RSA public keys may experience long delays. Where the key that is being checked has been obtained from an un
CVE-2024-2511MedApr 8, 2024
affected < 3.1.4-6.1fixed 3.1.4-6.1
Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This prob
CVE-2023-50782Feb 5, 2024
affected < 3.1.4-15.1fixed 3.1.4-15.1
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
CVE-2024-0727MedJan 26, 2024
affected < 3.1.4-4.1fixed 3.1.4-4.1
Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can c
CVE-2023-6129MedJan 9, 2024
affected < 3.1.4-3.1fixed 3.1.4-3.1
Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications running on PowerPC CPU based platforms if the CPU provides vector instructions. Impact summary: If an attacker can influence whether
CVE-2023-5678MedNov 6, 2023
affected < 3.1.4-2.1fixed 3.1.4-2.1
Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applicatio
CVE-2023-5363HigOct 25, 2023
affected < 3.1.4-1.1fixed 3.1.4-1.1
Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness,
CVE-2023-4807Sep 8, 2023
affected < 3.1.3-1.2fixed 3.1.3-1.2
Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X86_64 processors supporting the AVX512-IFMA instructions. Impact summary: If in an
CVE-2023-3817Jul 31, 2023
affected < 3.1.2-1.1fixed 3.1.2-1.1
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters tha

Page 2 of 4