CVE-2021-3449
Summary
| CVE | CVE-2021-3449 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-03-25 15:15:00 UTC |
| Updated | 2023-11-07 03:38:00 UTC |
| Description | An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j). |
Risk And Classification
Problem Types: CWE-476
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Checkpoint | Multi-domain Management | - | All | All | All |
| Operating System | Checkpoint | Multi-domain Management Firmware | r80.40 | All | All | All |
| Operating System | Checkpoint | Multi-domain Management Firmware | r81 | All | All | All |
| Hardware | Checkpoint | Quantum Security Gateway | - | All | All | All |
| Operating System | Checkpoint | Quantum Security Gateway Firmware | r80.40 | All | All | All |
| Operating System | Checkpoint | Quantum Security Gateway Firmware | r81 | All | All | All |
| Hardware | Checkpoint | Quantum Security Management | - | All | All | All |
| Operating System | Checkpoint | Quantum Security Management Firmware | r80.40 | All | All | All |
| Operating System | Checkpoint | Quantum Security Management Firmware | r81 | All | All | All |
| Operating System | Debian | Debian Linux | 10.0 | All | All | All |
| Operating System | Debian | Debian Linux | 9.0 | All | All | All |
| Operating System | Fedoraproject | Fedora | 34 | All | All | All |
| Operating System | Freebsd | Freebsd | 12.2 | - | All | All |
| Operating System | Freebsd | Freebsd | 12.2 | p1 | All | All |
| Operating System | Freebsd | Freebsd | 12.2 | p2 | All | All |
| Application | Mcafee | Web Gateway | 10.1.1 | All | All | All |
| Application | Mcafee | Web Gateway | 8.2.19 | All | All | All |
| Application | Mcafee | Web Gateway | 9.2.10 | All | All | All |
| Application | Mcafee | Web Gateway Cloud Service | 10.1.1 | All | All | All |
| Application | Mcafee | Web Gateway Cloud Service | 8.2.19 | All | All | All |
| Application | Mcafee | Web Gateway Cloud Service | 9.2.10 | All | All | All |
| Application | Netapp | Active Iq Unified Manager | - | All | All | All |
| Application | Netapp | Cloud Volumes Ontap Mediator | - | All | All | All |
| Application | Netapp | E-series Performance Analyzer | - | All | All | All |
| Application | Netapp | Oncommand Insight | - | All | All | All |
| Application | Netapp | Oncommand Workflow Automation | - | All | All | All |
| Application | Netapp | Ontap Select Deploy Administration Utility | - | All | All | All |
| Hardware | Netapp | Santricity Smi-s Provider | - | All | All | All |
| Application | Netapp | Santricity Smi-s Provider | - | All | All | All |
| Operating System | Netapp | Santricity Smi-s Provider Firmware | - | All | All | All |
| Application | Netapp | Snapcenter | - | All | All | All |
| Hardware | Netapp | Storagegrid | - | All | All | All |
| Application | Netapp | Storagegrid | - | All | All | All |
| Operating System | Netapp | Storagegrid Firmware | - | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Nodejs | Node.js | All | All | All | All |
| Application | Openssl | Openssl | All | All | All | All |
| Application | Oracle | Communications Communications Policy Management | 12.6.0.0.0 | All | All | All |
| Application | Oracle | Enterprise Manager For Storage Management | 13.4.0.0 | All | All | All |
| Application | Oracle | Essbase | 21.2 | All | All | All |
| Application | Oracle | Graalvm | 19.3.5 | All | All | All |
| Application | Oracle | Graalvm | 20.3.1.2 | All | All | All |
| Application | Oracle | Graalvm | 21.0.0.2 | All | All | All |
| Application | Oracle | Jd Edwards Enterpriseone Tools | All | All | All | All |
| Application | Oracle | Jd Edwards World Security | a9.4 | All | All | All |
| Application | Oracle | Mysql Connectors | All | All | All | All |
| Application | Oracle | Mysql Server | All | All | All | All |
| Application | Oracle | Mysql Server | All | All | All | All |
| Application | Oracle | Mysql Workbench | All | All | All | All |
| Application | Oracle | Peoplesoft Enterprise Peopletools | 8.57 | All | All | All |
| Application | Oracle | Peoplesoft Enterprise Peopletools | 8.58 | All | All | All |
| Application | Oracle | Peoplesoft Enterprise Peopletools | 8.59 | All | All | All |
| Application | Oracle | Primavera Unifier | 19.12 | All | All | All |
| Application | Oracle | Primavera Unifier | 20.12 | All | All | All |
| Application | Oracle | Primavera Unifier | 21.12 | All | All | All |
| Application | Oracle | Primavera Unifier | All | All | All | All |
| Application | Oracle | Secure Backup | All | All | All | All |
| Application | Oracle | Secure Global Desktop | 5.6 | All | All | All |
| Application | Oracle | Zfs Storage Appliance Kit | 8.8 | All | All | All |
| Hardware | Siemens | Ruggedcom Rcm1224 | - | All | All | All |
| Operating System | Siemens | Ruggedcom Rcm1224 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Lpe9403 | - | All | All | All |
| Operating System | Siemens | Scalance Lpe9403 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance M-800 | - | All | All | All |
| Operating System | Siemens | Scalance M-800 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S602 | - | All | All | All |
| Operating System | Siemens | Scalance S602 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S612 | - | All | All | All |
| Operating System | Siemens | Scalance S612 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S615 | - | All | All | All |
| Operating System | Siemens | Scalance S615 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S623 | - | All | All | All |
| Operating System | Siemens | Scalance S623 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance S627-2m | - | All | All | All |
| Operating System | Siemens | Scalance S627-2m Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Sc-600 | - | All | All | All |
| Operating System | Siemens | Scalance Sc-600 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance W1700 | - | All | All | All |
| Operating System | Siemens | Scalance W1700 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance W700 | - | All | All | All |
| Operating System | Siemens | Scalance W700 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xb-200 | - | All | All | All |
| Operating System | Siemens | Scalance Xb-200 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xc-200 | - | All | All | All |
| Operating System | Siemens | Scalance Xc-200 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xf-200ba | - | All | All | All |
| Operating System | Siemens | Scalance Xf-200ba Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xm-400 | - | All | All | All |
| Operating System | Siemens | Scalance Xm-400 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xp-200 | - | All | All | All |
| Operating System | Siemens | Scalance Xp-200 Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xr-300wg | - | All | All | All |
| Operating System | Siemens | Scalance Xr-300wg Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xr524-8c | - | All | All | All |
| Operating System | Siemens | Scalance Xr524-8c Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xr526-8c | - | All | All | All |
| Operating System | Siemens | Scalance Xr526-8c Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xr528-6m | - | All | All | All |
| Operating System | Siemens | Scalance Xr528-6m Firmware | All | All | All | All |
| Hardware | Siemens | Scalance Xr552-12 | - | All | All | All |
| Operating System | Siemens | Scalance Xr552-12 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Cloud Connect 7 | - | All | All | All |
| Operating System | Siemens | Simatic Cloud Connect 7 Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Cloud Connect 7 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Cp 1242-7 Gprs V2 | - | All | All | All |
| Operating System | Siemens | Simatic Cp 1242-7 Gprs V2 Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Cp 1242-7 Gprs V2 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Hmi Basic Panels 2nd Generation | - | All | All | All |
| Operating System | Siemens | Simatic Hmi Basic Panels 2nd Generation Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Hmi Comfort Outdoor Panels | - | All | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Outdoor Panels Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Hmi Ktp Mobile Panels | - | All | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | All | All | All | All |
| Application | Siemens | Simatic Logon | All | All | All | All |
| Application | Siemens | Simatic Logon | 1.5 | sp3_update_1 | All | All |
| Hardware | Siemens | Simatic Mv500 | - | All | All | All |
| Operating System | Siemens | Simatic Mv500 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp1243-7 Lte Eu | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp1243-7 Lte Eu Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp1243-7 Lte Us | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp1243-7 Lte Us Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1243-8 Irc | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1243-8 Irc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1542sp-1 Irc | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1542sp-1 Irc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1543-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1543-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1543sp-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1543sp-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Net Cp 1545-1 | - | All | All | All |
| Operating System | Siemens | Simatic Net Cp 1545-1 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Pcs 7 Telecontrol | - | All | All | All |
| Operating System | Siemens | Simatic Pcs 7 Telecontrol Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Pcs Neo | - | All | All | All |
| Operating System | Siemens | Simatic Pcs Neo Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Pdm | - | All | All | All |
| Operating System | Siemens | Simatic Pdm Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Process Historian Opc Ua Server | - | All | All | All |
| Operating System | Siemens | Simatic Process Historian Opc Ua Server Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf166c | - | All | All | All |
| Operating System | Siemens | Simatic Rf166c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf185c | - | All | All | All |
| Operating System | Siemens | Simatic Rf185c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf186c | - | All | All | All |
| Hardware | Siemens | Simatic Rf186ci | - | All | All | All |
| Operating System | Siemens | Simatic Rf186ci Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Rf186c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf188c | - | All | All | All |
| Hardware | Siemens | Simatic Rf188ci | - | All | All | All |
| Operating System | Siemens | Simatic Rf188ci Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Rf188c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Rf360r | - | All | All | All |
| Operating System | Siemens | Simatic Rf360r Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1211c | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1211c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1212c | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1212c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1212fc | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1212fc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1214c | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1214c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1214 Fc | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1214 Fc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1215c | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1215c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1215 Fc | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1215 Fc Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1200 Cpu 1217c | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Cpu 1217c Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-1500 Cpu 1518-4 Pn/dp Mfp | - | All | All | All |
| Operating System | Siemens | Simatic S7-1500 Cpu 1518-4 Pn/dp Mfp Firmware | All | All | All | All |
| Application | Siemens | Simatic Wincc Runtime Advanced | All | All | All | All |
| Application | Siemens | Simatic Wincc Telecontrol | - | All | All | All |
| Hardware | Siemens | Sinamics Connect 300 | - | All | All | All |
| Operating System | Siemens | Sinamics Connect 300 Firmware | All | All | All | All |
| Application | Siemens | Sinec Infrastructure Network Services | All | All | All | All |
| Application | Siemens | Sinec Infrastructure Network Services | 1.0.1.1 | All | All | All |
| Application | Siemens | Sinec Nms | 1.0 | - | All | All |
| Application | Siemens | Sinec Nms | 1.0 | sp1 | All | All |
| Application | Siemens | Sinec Pni | - | All | All | All |
| Application | Siemens | Sinema Server | 14.0 | - | All | All |
| Application | Siemens | Sinema Server | 14.0 | sp1 | All | All |
| Application | Siemens | Sinema Server | 14.0 | sp2 | All | All |
| Application | Siemens | Sinema Server | 14.0 | sp2_update1 | All | All |
| Application | Siemens | Sinema Server | 14.0 | sp2_update2 | All | All |
| Application | Siemens | Sinumerik Opc Ua Server | All | All | All | All |
| Application | Siemens | Tia Administrator | All | All | All | All |
| Hardware | Siemens | Tim 1531 Irc | - | All | All | All |
| Operating System | Siemens | Tim 1531 Irc Firmware | All | All | All | All |
| Application | Sonicwall | Capture Client | 3.5 | All | All | All |
| Hardware | Sonicwall | Sma100 | - | All | All | All |
| Operating System | Sonicwall | Sma100 Firmware | All | All | All | All |
| Operating System | Sonicwall | Sonicos | 7.0.1.0 | All | All | All |
| Application | Tenable | Log Correlation Engine | All | All | All | All |
| Application | Tenable | Nessus | All | All | All | All |
| Application | Tenable | Nessus Network Monitor | 5.11.0 | All | All | All |
| Application | Tenable | Nessus Network Monitor | 5.11.1 | All | All | All |
| Application | Tenable | Nessus Network Monitor | 5.12.0 | All | All | All |
| Application | Tenable | Nessus Network Monitor | 5.12.1 | All | All | All |
| Application | Tenable | Nessus Network Monitor | 5.13.0 | All | All | All |
| Application | Tenable | Tenable.sc | All | All | All | All |
| Operating System | Windriver | Linux | - | All | All | All |
| Operating System | Windriver | Linux | 17.0 | All | All | All |
| Operating System | Windriver | Linux | 18.0 | All | All | All |
| Operating System | Windriver | Linux | 19.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| [SECURITY] [DLA 2751-1] postgresql-9.6 security update | MLIST | lists.debian.org | |
| [SECURITY] Fedora 34 Update: openssl-1.1.1k-1.fc34 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| Public KB - SA44845 - OpenSSL Security Advisory CVE-2021-3450 | CONFIRM | kb.pulsesecure.net | |
| Oracle Critical Patch Update Advisory - April 2022 | MISC | www.oracle.com | |
| April 2021 MySQL Vulnerabilities in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | |
| March 2021 OpenSSL Vulnerabilities in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | |
| Debian -- Security Information -- DSA-4875-1 openssl | DEBIAN | www.debian.org | |
| Oracle Critical Patch Update Advisory - July 2021 | N/A | www.oracle.com | |
| git.openssl.org Git - openssl.git/commitdiff | CONFIRM | git.openssl.org | |
| www.openssl.org/news/secadv/20210325.txt | CONFIRM | www.openssl.org | |
| OpenSSL: Multiple vulnerabilities (GLSA 202103-03) — Gentoo security | GENTOO | security.gentoo.org | |
| Oracle Critical Patch Update Advisory - October 2021 | MISC | www.oracle.com | |
| [R1] Nessus Network Monitor 5.13.1 Fixes Multiple Third-party Vulnerabilities - Security Advisory | Tenable® | CONFIRM | www.tenable.com | |
| [R1] LCE 6.0.9 Fixes Multiple Third-party Vulnerabilities - Security Advisory | Tenable® | CONFIRM | www.tenable.com | |
| git.openssl.org Git - openssl.git/commitdiff | git.openssl.org | ||
| cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf | CONFIRM | cert-portal.siemens.com | |
| security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc | MISC | security.FreeBSD.org | |
| McAfee Security Bulletin - Status and updates for OpenSSL vulnerabilities (CVE-2021-3450 and 2021-3449) | CONFIRM | kc.mcafee.com | |
| cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf | CONFIRM | cert-portal.siemens.com | |
| [R1] Tenable.sc 5.18.0 Fixes One Third-party Vulnerability - Security Advisory | Tenable® | CONFIRM | www.tenable.com | |
| oss-security - Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing | MLIST | www.openwall.com | |
| Security Advisory | CONFIRM | psirt.global.sonicwall.com | |
| [R1] Nessus 8.13.2 Fixes Multiple Third-party Vulnerabilities - Security Advisory | Tenable® | CONFIRM | www.tenable.com | |
| oss-security - OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing | MLIST | www.openwall.com | |
| oss-security - Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing | MLIST | www.openwall.com | |
| [SECURITY] Fedora 34 Update: openssl-1.1.1k-1.fc34 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| Oracle Critical Patch Update Advisory - July 2022 | N/A | www.oracle.com | |
| Oracle Critical Patch Update Advisory - April 2021 | MISC | www.oracle.com | |
| oss-security - Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing | MLIST | www.openwall.com | |
| Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021 | CISCO | tools.cisco.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: Peter Kästle (Nokia) and Samuel Sapalski (Nokia)
Legacy QID Mappings
- 159128 Oracle Enterprise Linux Security Update for openssl (ELSA-2021-1024)
- 159138 Oracle Enterprise Linux Security Update for openssl (ELSA-2021-9151)
- 174844 SUSE Enterprise Linux Security update for openssl-1_1 (SUSE-SU-2021:0954-1)
- 174845 Software and Systems Development (SUSE) Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL-1_1) (SUSE-SU-2021:0955-1)
- 174863 SUSE Enterprise Linux Security update for openssl-1_1 (SUSE-SU-2021:0954-1)
- 174864 Software and Systems Development (SUSE) Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL-1_1) (SUSE-SU-2021:0955-1)
- 178486 Debian Security Update for openssl (DSA 4875-1)
- 178849 Debian Security Update for postgresql-9.6 (DLA 2751-1)
- 179511 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (CVE-2021-3449)
- 198310 Ubuntu Security Notification for Openssl Vulnerability (USN-4891-1)
- 198458 Ubuntu Security Notification for PostgreSQL vulnerabilities (USN-5038-1)
- 20221 Oracle MySQL April 2021 Critical Patch Update (CPUAPR2021)
- 239185 Red Hat Update for openssl (RHSA-2021:1024)
- 239201 Red Hat Update for openssl (RHSA-2021:1131)
- 239247 Red Hat Update for Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 (RHSA-2021:1199)
- 239249 Red Hat Update for openssl (RHSA-2021:1063)
- 239730 Red Hat Update for red hat jboss web server 5.4.2 (RHSA-2021:1195)
- 239739 Red Hat Update for red hat jboss web server 3.1 service pack 12 (RHSA-2021:1202)
- 281398 Fedora Security Update for Open Secure Sockets Layer (OpenSSL) (FEDORA-2021-cbf14ab8f9)
- 296053 Oracle Solaris 11.4 Support Repository Update (SRU) 35.94.4 Missing (CPUJUL2021)
- 296059 Oracle Solaris 11.4 Support Repository Update (SRU) 36.0.1.101.2 Missing (CPUJUL2021)
- 296060 Oracle Solaris 11.4 Support Repository Update (SRU) 37.0.1.101.1 Missing (CPUJUL2021)
- 316994 Cisco Internetwork Operating System (IOS-XE) Vulnerability in Open Secure Sockets Layer (OpenSSL) Affecting Cisco Products (cisco-sa-openssl-2021-GHY28dJd)
- 316995 Cisco Nexus Operating System (NX-OS) Vulnerability in Open Secure Sockets Layer (OpenSSL) Affecting Cisco Products (cisco-sa-openssl-2021-GHY28dJd)
- 316996 Cisco Web Security Appliance Vulnerability in Open Secure Sockets Layer (OpenSSL) Affecting Cisco Products (cisco-sa-openssl-2021-GHY28dJd)
- 352258 Amazon Linux Security Advisory for openssl11: ALAS2-2021-1622
- 357333 Amazon Linux Security Advisory for edk2 : ALAS2-2024-2502
- 375559 Python Open Secure Sockets Layer (OpenSSL) Library Vulnerability
- 375772 PostgreSQL Have Multiple Vulnerabilities
- 376409 Abyss Web Server Secure Sockets Layer (SSL)/Transport Layer Security (TLS) Engine Vulnerability
- 377109 Alibaba Cloud Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ALINUX3-SA-2021:0021)
- 379452 IBM Cognos Analytics Multiple Vulnerabilities (7123154)
- 38837 OpenSSL Security Update (OpenSSL Security Advisory 20210325)
- 500498 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
- 500566 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
- 500765 Alpine Linux Security Update for openssl
- 501165 Alpine Linux Security Update for openssl
- 501694 Alpine Linux Security Update for synapse
- 501984 Alpine Linux Security Update for Open Secure Sockets Layer3 (OpenSSL3)
- 502903 Alpine Linux Security Update for openssl1.1-compat
- 504257 Alpine Linux Security Update for openssl
- 591311 Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)
- 670414 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-1985)
- 670437 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2063)
- 670448 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-2052)
- 670470 EulerOS Security Update for openssl1.1.1d (EulerOS-SA-2021-2225)
- 670877 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2021-1985)
- 673098 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL)111d (EulerOS-SA-2023-2183)
- 690151 Free Berkeley Software Distribution (FreeBSD) Security Update for mysql (56ba4513-a1be-11eb-9072-d4c9ef517024)
- 690183 Free Berkeley Software Distribution (FreeBSD) Security Update for node.js (c0c1834c-9761-11eb-acfd-0022489ad614)
- 690185 Free Berkeley Software Distribution (FreeBSD) Security Update for Open Secure Sockets Layer (OpenSSL) (5a668ab3-8d86-11eb-b8d6-d4c9ef517024)
- 710009 Gentoo Linux OpenSSL Multiple Vulnerabilities (GLSA 202103-03)
- 730135 Cisco Prime Infrastructure Denial of Service (DoS) Vulnerability in Open Secure Sockets Layer (OpenSSL) Affecting Cisco Products (cisco-sa-openssl-2021-GHY28dJd)
- 730140 IBM MQ Appliance OpenSSL Vulnerability (6463293)
- 730214 Abyss Web Server Secure Socket Layer (SSL)/Transport Layer Security (TLS) Engine Vulnerability
- 730228 McAfee Web Gateway Multiple Vulnerabilities (WP-3445, WP-3483, WP-3527, WP-3528, WP-3547, WP-3584,WP-3589,WP-3611)
- 750293 OpenSUSE Security Update for openssl-1_1 (openSUSE-SU-2021:0476-1)
- 750833 OpenSUSE Security Update for nodejs12 (openSUSE-SU-2021:2327-1)
- 750837 SUSE Enterprise Linux Security Update for nodejs10 (SUSE-SU-2021:2353-1)
- 750840 OpenSUSE Security Update for nodejs10 (openSUSE-SU-2021:2353-1)
- 750858 OpenSUSE Security Update for nodejs10 (openSUSE-SU-2021:1061-1)
- 750859 OpenSUSE Security Update for nodejs12 (openSUSE-SU-2021:1059-1)
- 91783 IBM Integration Bus and IBM App Connect Enterprise Open Secure Sockets Layer (OpenSSL) Multiple Vulnerabilities (6466315)
- 91784 IBM Integration Bus and IBM App Connect Enterprise Node.js Multiple Vulnerabilities (6467639)
- 91822 Microsoft Visual Studio Security Update for October 2021
- 940369 AlmaLinux Security Update for Open Secure Sockets Layer (OpenSSL) (ALSA-2021:1024)
- 960860 Rocky Linux Security Update for Open Secure Sockets Layer (OpenSSL) (RLSA-2021:1024)