Back to search
CVE-2009-3245
Published: Mar 5, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2010-0916
vdb-entry
x_refsource_VUPEN
42724
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11738
vdb-entry
signature
x_refsource_OVAL
39461
third-party-advisory
x_refsource_SECUNIA
[openssl-cvs] 20100223 OpenSSL: OpenSSL_1_0_0-stable: openssl/crypto/bn/ bn_div.c bn_gf...
mailing-list
x_refsource_MLIST
http://support.apple.com/kb/HT4723
x_refsource_CONFIRM
FEDORA-2010-5357
vendor-advisory
x_refsource_FEDORA
SSA:2010-060-02
vendor-advisory
x_refsource_SLACKWARE
APPLE-SA-2011-06-23-1
vendor-advisory
x_refsource_APPLE
oval:org.mitre.oval:def:6640
vdb-entry
signature
x_refsource_OVAL
HPSBOV02540
vendor-advisory
x_refsource_HP
[openssl-cvs] 20100223 OpenSSL: openssl/crypto/bn/ bn_div.c bn_gf2m.c openssl/crypto/ec...
mailing-list
x_refsource_MLIST
38761
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2010:013
vendor-advisory
x_refsource_SUSE
38562
vdb-entry
x_refsource_BID
[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.0.6a has been released
mailing-list
x_refsource_MLIST
oval:org.mitre.oval:def:9790
vdb-entry
signature
x_refsource_OVAL
[openssl-cvs] 20100223 OpenSSL: OpenSSL_0_9_8-stable: openssl/ CHANGES openssl/crypto/b...
mailing-list
x_refsource_MLIST
RHSA-2010:0977
vendor-advisory
x_refsource_REDHAT
ADV-2010-0839
vdb-entry
x_refsource_VUPEN
MDVSA-2010:076
vendor-advisory
x_refsource_MANDRIVA
HPSBUX02517
vendor-advisory
x_refsource_HP
[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.2.1a has been released
mailing-list
x_refsource_MLIST
USN-1003-1
vendor-advisory
x_refsource_UBUNTU
39932
third-party-advisory
x_refsource_SECUNIA
ADV-2010-0933
vdb-entry
x_refsource_VUPEN
RHSA-2011:0896
vendor-advisory
x_refsource_REDHAT
SSRT100058
vendor-advisory
x_refsource_HP
https://kb.bluecoat.com/index?page=content&id=SA50
x_refsource_CONFIRM
ADV-2010-1216
vdb-entry
x_refsource_VUPEN
42733
third-party-advisory
x_refsource_SECUNIA
37291
third-party-advisory
x_refsource_SECUNIA
FEDORA-2010-5744
vendor-advisory
x_refsource_FEDORA
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory.asc
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now