FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-07 16:55:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
2ecb7b20-d97e-11e0-b2e2-00215c6a37bb	OpenSSL -- multiple vulnerabilities OpenSSL Team reports: Two security flaws have been fixed in OpenSSL 1.0.0e Under certain circumstances OpenSSL's internal certificate verification routines can incorrectly accept a CRL whose nextUpdate field is in the past. (CVE-2011-3207) OpenSSL server code for ephemeral ECDH ciphersuites is not thread-safe, and furthermore can crash if a client violates the protocol by sending handshake messages in incorrect order. (CVE-2011-3210) Discovery 2011-09-06 Entry 2011-09-07 Modified 2014-04-10 openssl >= 1.0.0 lt 1.0.0_6 >= 0.9.8 lt 1.0.0 linux-f10-openssl >= 0.9.8 lt 0.9.8r CVE-2011-3207 CVE-2011-3210 http://www.openssl.org/news/secadv_20110906.txt

VuXML ID

Description

2ecb7b20-d97e-11e0-b2e2-00215c6a37bb

OpenSSL -- multiple vulnerabilities

OpenSSL Team reports:

Two security flaws have been fixed in OpenSSL 1.0.0e

Under certain circumstances OpenSSL's internal certificate verification routines can incorrectly accept a CRL whose nextUpdate field is in the past. (CVE-2011-3207)

OpenSSL server code for ephemeral ECDH ciphersuites is not thread-safe, and furthermore can crash if a client violates the protocol by sending handshake messages in incorrect order. (CVE-2011-3210)

Discovery 2011-09-06
Entry 2011-09-07
Modified 2014-04-10
openssl

>= 1.0.0 lt 1.0.0_6

>= 0.9.8 lt 1.0.0

linux-f10-openssl

>= 0.9.8 lt 0.9.8r

CVE-2011-3207
CVE-2011-3210
http://www.openssl.org/news/secadv_20110906.txt