OpenSSL Archives - Securezoo

OpenSSL patches multiple vulnerabilities (1 rated High severity)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 10, 2023 / CVE-2023-0286, OpenSSL, Vulnerabilities, X.509

OpenSSL has released a security update with fixes for one High risk vulnerability (CVE-2023-0286) and multiple other Moderate severity vulnerabilities.

Cisco released security advisory for OpenSSL vulnerabilities affecting Cisco products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 5, 2022 / Cisco, CVE-2022-3602, CVE-2022-3786, IOT, OpenSSL, X.509

Cisco has released a security advisory for OpenSSL vulnerabilities affecting Cisco products.

OpenSSL fixes 2 High risk vulnerabilities (CVE-2022-3786 and CVE-2022-3602)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 2, 2022 / Crypto, CVE-2022-3602, CVE-2022-3786, HTTPS, OpenSSL, TLS, X.509

OpenSSL has released a security update with fixes for two High risk vulnerabilities (CVE-2022-3786 and CVE-2022-3602).

OpenSSL forewarns of upcoming Critical patch (prepare now)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / October 30, 2022 / HTTPS, OpenSSL, Vulnerabilities

OpenSSL has released an announcement that forewarns of an upcoming Critical patch for a Critical vulnerability in OpenSSL versions 3.0 and above.

OpenSSL patches High risk RSA private key operation vulnerability (CVE-2022-2274)

Cryptography, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / July 6, 2022 / CVE-2022-2274, Cybersecurity Threat Center, OpenSSL, RSA

OpenSSL has patched one High risk heap memory corruption with RSA private key operation (CVE-2022-2274) in certain OpenSSL versions.

OpenSSL patches one High risk vulnerability (CVE-2022-0778)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / March 19, 2022 / CVE-2022-0778, DOS, OpenSSL

OpenSSL has patched one High risk vulnerability CVE-2022-0778 in certain OpenSSL versions. As a result, a bad actor could cause an Infinite loop in the BN_mod_sqrt() function that could result in a denial of service (DoS) condition.

Mozilla patches local privilege escalation vulnerability in Mozilla VPN

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 25, 2022 / CVE-2022-0517, Mozilla, OpenSSL, VPN

The Mozilla Foundation has patched a High risk local privilege escalation vulnerability in Mozilla VPN.

McAfee Agent security update fixes 2 High risk vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / January 24, 2022 / CVE-2021-31854, CVE-2022-0166, McAfee, OpenSSL, OPENSSLDIR

McAfee has released a security update for its McAfee Agent for Windows that fixes 2 High risk vulnerabilities (CVE-2021-31854, CVE-2022-0166).

Cisco fixes 5 High risk Cisco IOS XR Software vulnerabilities in multiple products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / September 10, 2021 / Cisco, CVE-2021-3449, CVE-2021-3450, CVE-2021-34713, CVE-2021-34718, CVE-2021-34719, CVE-2021-34720, CVE-2021-34728, IOS XR, Networking, OpenSSL

Cisco has fixed five High risk Cisco IOS XR Software vulnerabilities in multiple network products, as well as a security update for OpenSSL vulnerabilities.

QNAP and other network storage makers issue security advisories on OpenSSL flaws

Security Updates & Patches, Storage Security, Vulnerabilities & Exploits / By Frank Crast / September 1, 2021 / CVE-2021-3711, CVE-2021-3712, OpenSSL, QNAP

QNAP and other network storage makers have issued security advisories for OpenSSL remote code execution and denial-of-service (DoS) vulnerabilities that impact its network-attached storage (NAS) devices.