CVE - CVE - 2017 - 3735

CVE-ID
cve - 2017 - 3735	了解更多国家漏洞数据库(NVD) •CVSS严重性评级•修复信息•••CPE SCAP映射脆弱的软件版本信息
描述
在解析一个IPAddressFamily扩展一个证书,可以做一个1字节通读。这将导致一个不正确的文本显示的证书。这个错误已经出现自2006年以来,存在于所有版本的OpenSSL 1.0.2m 1.1.0g。
引用
注意:引用为方便读者提供帮助区分漏洞。并不是完整列表。
报价:100515 URL: http://www.securityfocus.com/bid/100515 确认:https://cert - portal.siemens.com/productcert/pdf/ssa - 412672. - pdf 确认:http://www.oracle.com/technetwork/security - advisory/cpuapr2018 - 3678067. - html URL: http://www.oracle.com/technetwork/security advisory/cpuapr2018 - 3678067. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujan2018 - 3236628. - html URL: http://www.oracle.com/technetwork/security advisory/cpujan2018 - 3236628. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujul2018 - 4258247. - html URL: http://www.oracle.com/technetwork/security advisory/cpujul2018 - 4258247. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpuoct2018 - 4428296. - html URL: http://www.oracle.com/technetwork/security advisory/cpuoct2018 - 4428296. - html 确认:https://security.netapp.com/advisory/ntap 0001/——20170927 URL: https://security.netapp.com/advisory/ntap 0001/——20170927 确认:https://security.netapp.com/advisory/ntap 0002/——20171107 URL: https://security.netapp.com/advisory/ntap 0002/——20171107 确认:https://support.apple.com/HT208331 URL: https://support.apple.com/HT208331 确认:https://www.openssl.org/news/万博下载包secadv/20170828.txt URL: https://www.openssl.org万博下载包/news/secadv/20170828.txt 确认:https://www.openssl.org/news/万博下载包secadv/20171102.txt URL: https://www.openssl.org万博下载包/news/secadv/20171102.txt 确认:https://www.oracle.com/technetwork/security - advisory/cpujan2019 - 5072801. - html URL: https://www.oracle.com/technetwork/security advisory/cpujan2019 - 5072801. - html 确认:https://www.tenable.com/security/tns - 2017 - 14所示 URL: https://www.tenable.com/security/tns——2017 - 14 确认:https://www.tenable.com/security/tns - 2017 - 15所示 URL: https://www.tenable.com/security/tns——2017 - 15 DEBIAN: dsa - 4017 URL: https://www.debian.org/security/2017/dsa - 4017 DEBIAN: dsa - 4018 URL: https://www.debian.org/security/2017/dsa - 4018 FREEBSD: FreeBSD-SA-17:11 URL: https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc GENTOO: glsa - 201712 - 03 URL: https://security.gentoo.org/glsa/201712-03 MISC: https://github.com/openssl/openssl/commit/068b963bb7afc57f5bdd723de0dd15e7795d5822 URL: https://github.com/openssl/openssl/commit/068b963bb7afc57f5bdd723de0dd15e7795d5822 MISC: https://www.oracle.com//security-alerts/cpujul2021.html URL: https://www.oracle.com//security-alerts/cpujul2021.html MISC: https://www.oracle.com/technetwork/security - advisory/cpuapr2019 - 5072813. - html URL: https://www.oracle.com/technetwork/security advisory/cpuapr2019 - 5072813. - html MISC: https://www.oracle.com/technetwork/security - advisory/cpujul2019 - 5072835. - html URL: https://www.oracle.com/technetwork/security advisory/cpujul2019 - 5072835. - html MLIST: [debian-lts-announce] 20171109[安全][国防后勤局- 1157 - 1]openssl安全更新 URL: https://lists.debian.org/debian-lts-announce/2017/11/msg00011.html 红帽:RHSA-2018:3221 URL: https://access.redhat.com/errata/RHSA-2018:3221 红帽:RHSA-2018:3505 URL: https://access.redhat.com/errata/RHSA-2018:3505 SECTRACK: 1039726 URL: http://www.securitytracker.com/id/1039726 UBUNTU: usn - 3611 - 2 URL: https://usn.ubuntu.com/3611-2/
分配中央社
OpenSSL软件基金会
创建日期记录
20161216	免责声明:记录创建日期可能反映了CVE ID分配或保留的时候,,不一定表示当发现了这个漏洞,与受影响的供应商,在CVE公开披露,或更新。
阶段(遗留)
分配(20161216)
票(遗留)

评论(遗留)

提出(遗留)
N /一个
这是一个记录CVE列表,它提供了共同的标识符公开已知的网络安全漏洞。
CVE使用关键字搜索: 你也可以搜索参考使用CVE参考地图。
更多信息:CVE请求Web表单(从下拉框中选择“其他”)

回到顶部

cve - 2017 - 3735