AVG-477 log

Package	openssl
Status	Fixed
Severity	Medium
Type	multiple issues
Affected	1.1.0.f-2
Fixed	1.1.0.g-1
Current	3.2.1-1 [core]
Ticket	None
Created	Thu Nov 2 15:58:37 2017

Issue	Severity	Remote	Type	Description
CVE-2017-3736	Medium	Yes	Information disclosure	A carry propagation bug has been found in OpenSSL < 1.1.0g in the x86_64 Montgomery squaring procedure. No EC algorithms are affected. Analysis suggests...
CVE-2017-3735	Low	Yes	Denial of service	A security issue has been found in OpenSSL < 1.1.0g. If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer...

Issue

Severity

Remote

Type

Description

CVE-2017-3736

Medium

Yes

Information disclosure

A carry propagation bug has been found in OpenSSL < 1.1.0g in the x86_64 Montgomery squaring procedure. No EC algorithms are affected. Analysis suggests...

CVE-2017-3735

Low

Yes

Denial of service

A security issue has been found in OpenSSL < 1.1.0g. If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer...

Date	Advisory	Package	Type
07 Nov 2017	ASA-201711-14	openssl	multiple issues