openssl vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the openssl package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • L
CVE-2024-5535

<1:3.2.2-6.el9_5
  • L
CVE-2024-4741

<1:3.2.2-6.el9_5
  • L
CVE-2024-4603

<1:3.2.2-6.el9_5
  • L
CVE-2024-2511

<1:3.2.2-6.el9_5
  • M
CVE-2024-6119

<1:3.0.7-28.el9_4
  • L
CVE-2024-0727

<1:3.0.7-27.el9
  • L
CVE-2023-6237

<1:3.0.7-27.el9
  • L
Out-of-bounds Write

<1:3.0.7-27.el9
  • L
Improper Check for Unusual or Exceptional Conditions

<1:3.0.7-27.el9
  • L
Excessive Iteration

<1:3.0.7-27.el9
  • L
Inefficient Regular Expression Complexity

<1:3.0.7-27.el9
  • L
Improper Authentication

<1:3.0.7-27.el9
  • M
CVE-2023-5363

<1:3.0.7-25.el9_3
  • M
Allocation of Resources Without Limits or Throttling

<1:3.0.7-16.el9_2
  • M
Out-of-bounds Read

<1:3.0.7-16.el9_2
  • M
Improper Certificate Validation

<1:3.0.7-16.el9_2
  • M
Improper Certificate Validation

<1:3.0.7-16.el9_2
  • M
Improper Certificate Validation

<1:3.0.7-16.el9_2
  • M
Incomplete Cleanup

<1:3.0.1-41.el9_0
  • M
Improper Certificate Validation

<1:3.0.1-41.el9_0
  • L
NULL Pointer Dereference

<1:3.0.7-6.el9_2
  • M
Use of a Broken or Risky Cryptographic Algorithm

<1:3.0.1-41.el9_0
  • M
OS Command Injection

<1:3.0.1-41.el9_0
  • M
OS Command Injection

<1:3.0.1-41.el9_0
  • H
Buffer Overflow

<1:3.0.1-43.el9_0
  • H
Out-of-bounds Write

<1:3.0.1-43.el9_0
  • M
NULL Pointer Dereference

<1:3.0.1-47.el9_1
  • M
Access of Resource Using Incompatible Type ('Type Confusion')

<1:3.0.1-47.el9_1
  • M
NULL Pointer Dereference

<1:3.0.1-47.el9_1
  • M
NULL Pointer Dereference

<1:3.0.1-47.el9_1
  • M
Use After Free

<1:3.0.1-47.el9_1
  • M
Double Free

<1:3.0.1-47.el9_1
  • M
Information Exposure

<1:3.0.1-47.el9_1
  • M
Out-of-bounds Read

<1:3.0.1-47.el9_1