Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Libressl
(Openbsd)Repositories |
• https://github.com/libressl-portable/openbsd
• https://github.com/robertbachmann/openbsd-libssl |
#Vulnerabilities | 12 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2018-06-15 | CVE-2018-12434 | LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical host. | Libressl | 4.7 | ||
2014-12-28 | CVE-2014-9424 | Double free vulnerability in the ssl_parse_clienthello_use_srtp_ext function in d1_srtp.c in LibreSSL before 2.1.2 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a certain length-verification error during processing of a DTLS handshake. | Libressl | N/A |