openssl-devel

Direct Vulnerabilities

Known vulnerabilities in the openssl-devel package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L Integer Overflow or Wraparound	*
L Improper Handling of Missing Special Element	*
L CVE-2026-28387	*
L NULL Pointer Dereference	*
L Buffer Access with Incorrect Length Value	*
M NULL Pointer Dereference	*
M Access of Uninitialized Pointer	*
L Missing Required Cryptographic Step	*
H Improper Validation of Specified Type of Input	<1:3.5.1-7.el9_7
H Missing Required Cryptographic Step	<1:3.5.1-7.el9_7
H Access of Resource Using Incompatible Type ('Type Confusion')	<1:3.5.1-7.el9_7
H Incorrect Calculation of Buffer Size	<1:3.5.1-7.el9_7
H Access of Resource Using Incompatible Type ('Type Confusion')	<1:3.5.1-7.el9_7
H Out-of-bounds Write	<1:3.5.1-7.el9_7
H Allocation of Resources Without Limits or Throttling	<1:3.5.1-7.el9_7
H NULL Pointer Dereference	<1:3.5.1-7.el9_7
H Improper Validation of Specified Quantity in Input	<1:3.5.1-7.el9_7
H NULL Pointer Dereference	<1:3.5.1-7.el9_7
H Buffer Overflow	<1:3.5.1-7.el9_7
H Improper Handling of Parameters	<1:3.5.1-7.el9_7
M Out-of-bounds Write	<1:3.5.1-4.el9_7
L Out-of-bounds Read	*
H Improper Certificate Validation	<1:3.2.2-6.el9_5.1
L Improper Certificate Validation	*
L Covert Timing Channel	*
M Access of Resource Using Incompatible Type ('Type Confusion')	<1:3.0.7-28.el9_4
L Information Exposure	<1:3.2.2-6.el9_5
L Use After Free	<1:3.2.2-6.el9_5
L CVE-2024-4603	<1:3.2.2-6.el9_5
L Resource Exhaustion	<1:3.2.2-6.el9_5
L NULL Pointer Dereference	<1:3.0.7-27.el9
L Resource Exhaustion	<1:3.0.7-27.el9
L Reversible One-Way Hash	<1:3.0.7-27.el9
L Missing Required Cryptographic Step	<1:3.0.7-27.el9
M Missing Required Cryptographic Step	<1:3.0.7-25.el9_3
L Excessive Iteration	<1:3.0.7-27.el9
L Resource Exhaustion	<1:3.0.7-27.el9
L Improper Authentication	<1:3.0.7-27.el9
M Resource Exhaustion	<1:3.0.7-16.el9_2
M Out-of-Bounds	<1:3.0.7-16.el9_2
M Improper Certificate Validation	<1:3.0.7-16.el9_2
M Improper Certificate Validation	<1:3.0.7-16.el9_2
M Resource Exhaustion	<1:3.0.7-16.el9_2
H NULL Pointer Dereference	<1:3.0.1-47.el9_1
H Incorrect Type Conversion or Cast	<1:3.0.1-47.el9_1
H Use After Free	<1:3.0.1-47.el9_1
H NULL Pointer Dereference	<1:3.0.1-47.el9_1
H NULL Pointer Dereference	<1:3.0.1-47.el9_1
H Double Free	<1:3.0.1-47.el9_1
H Information Exposure	<1:3.0.1-47.el9_1
H Out-of-bounds Read	<1:3.0.1-47.el9_1
H Buffer Access with Incorrect Length Value	<1:3.0.1-43.el9_0
H Buffer Access with Incorrect Length Value	<1:3.0.1-43.el9_0
L NULL Pointer Dereference	<1:3.0.7-6.el9_2
M Missing Required Cryptographic Step	<1:3.0.1-41.el9_0
M Arbitrary Command Injection	<1:3.0.1-41.el9_0
M Improper Certificate Validation	<1:3.0.1-41.el9_0
M Improper Resource Shutdown or Release	<1:3.0.1-41.el9_0
M Arbitrary Command Injection	<1:3.0.1-41.el9_0

Vulnerability

Vulnerable Version

Integer Overflow or Wraparound