Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CentOS Update for openssl096b CESA-2010:0173 centos3 i386

Severity

Critical

Family

CentOS Local Security Checks

CVSSv2 Base

10.0

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Vendor Patch

Created

13 years ago

Modified

5 years ago

Check for the Version of openssl096b

Insight

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography library. It was discovered that OpenSSL did not always check the return value of the bn_wexpand() function. An attacker able to trigger a memory allocation failure in that function could cause an application using the OpenSSL library to crash or, possibly, execute arbitrary code. (CVE-2009-3245) All openssl096b users should upgrade to these updated packages, which contain a backported patch to resolve this issue. For the update to take effect, all programs using the openssl096b library must be restarted.

Affected Software

openssl096b on CentOS 3

Solution

Please Install the Updated Packages.

Common Vulnerabilities and Exposures (CVE)

CVE-2009-3245

References

http://lists.centos.org/pipermail/centos-announce/2010-March/016582.ht

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CentOS Update for openssl096b CESA-2010:0173 centos3 i386

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References