AVG-1581 log
| Package | openssl |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 1.1.1.i-2 |
| Fixed | 1.1.1.j-1 |
| Current | 3.6.0-1 [core] |
| Ticket | None |
| Created | Tue Feb 16 19:43:24 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-23841 | Medium | Yes | Denial of service | The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained... |
| CVE-2021-23840 | Low | Yes | Incorrect calculation | Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 27 Feb 2021 | ASA-202102-42 | openssl | multiple issues |