« List of all packages

conf-openssl

Opam page: https://opam.ocaml.org/packages/conf-openssl/

Versions

Version
conf-openssl.2 (latest)
conf-openssl.1

Vulnerable external dependencies (260)

Product For package Vendor Severity CVE Published
openssl conf-openssl.2 OpenSSL Medium CVE-2026-22796 - ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2026-22795 - Missing ASN1_TYPE validation in PKCS#12 parsing 1/27/2026
openssl conf-openssl.2 OpenSSL High CVE-2025-69421 - NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function 1/27/2026
openssl conf-openssl.2 OpenSSL High CVE-2025-69420 - Missing ASN1_TYPE validation in TS_RESP_verify_response() function 1/27/2026
openssl conf-openssl.2 OpenSSL High CVE-2025-69419 - Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-69418 - Unauthenticated/unencrypted trailing bytes with low-level OCB function calls 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-68160 - Heap out-of-bounds write in BIO_f_linebuffer on short writes 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-66199 - TLS 1.3 CompressedCertificate excessive memory allocation 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-4575 - The x509 application adds trusted use instead of rejected use 5/22/2025
openssl conf-openssl.2 OpenSSL Medium CVE-2025-15469 - 'openssl dgst' one-shot codepath silently truncates inputs >16MB 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-15468 - NULL dereference in SSL_CIPHER_find() function on unknown cipher ID 1/27/2026
openssl conf-openssl.2 OpenSSL Critical CVE-2025-15467 - Stack buffer overflow in CMS (Auth)EnvelopedData parsing 1/27/2026
openssl conf-openssl.2 OpenSSL Medium CVE-2025-11187 - Improper validation of PBMAC1 parameters in PKCS#12 MAC verification 1/27/2026
openssl conf-openssl.2 OpenSSL High CVE-2024-6119 - Possible denial of service in X.509 name checks 9/3/2024
openssl conf-openssl.2 OpenSSL Medium CVE-2024-0727 - PKCS12 Decoding crashes 1/26/2024
openssl conf-openssl.2 OpenSSL Medium CVE-2023-6129 - POLY1305 MAC implementation corrupts vector registers on PowerPC 1/9/2024
openssl conf-openssl.2 OpenSSL Medium CVE-2023-5678 - Excessive time spent in DH check / generation with large Q parameter value 11/6/2023
openssl conf-openssl.2 OpenSSL High CVE-2023-5363 - Incorrect cipher key & IV length processing 10/24/2023
openssl conf-openssl.2 OpenSSL High CVE-2023-4807 - POLY1305 MAC implementation corrupts XMM registers on Windows 9/8/2023
openssl conf-openssl.2 OpenSSL Medium CVE-2023-3817 - Excessive time spent checking DH q parameter value 7/31/2023