CVE-2011-3207

Published: Sep 22, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

HPSBMU02752

vendor-advisory

x_refsource_HP

SSRT100802

vendor-advisory

x_refsource_HP

http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564

x_refsource_CONFIRM

FEDORA-2012-18035

vendor-advisory

x_refsource_FEDORA

FEDORA-2011-12233

vendor-advisory

x_refsource_FEDORA

http://cvs.openssl.org/chngview?cn=21349

x_refsource_CONFIRM

45956

third-party-advisory

x_refsource_SECUNIA

MDVSA-2011:137

vendor-advisory

x_refsource_MANDRIVA

FEDORA-2011-12281

vendor-advisory

x_refsource_FEDORA

http://support.apple.com/kb/HT5784

x_refsource_CONFIRM

APPLE-SA-2013-06-04-1

vendor-advisory

x_refsource_APPLE

https://bugzilla.redhat.com/show_bug.cgi?id=736087

x_refsource_CONFIRM

1026012

vdb-entry

x_refsource_SECTRACK

http://openssl.org/news/secadv_20110906.txt

x_refsource_CONFIRM

57353

third-party-advisory

x_refsource_SECUNIA

RHSA-2011:1409

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-3207

Description

Affected Products

References