Showing 1 - 25 of 295

Files

OpenSSL Toolkit 3.3.2: Posted Sep 4, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed possible denial of service in X.509 name checks. Fixed possible buffer overread in SSL_select_next_proto().; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-5535, CVE-2024-6119; SHA-256 | 2e8a40b01979afe8be0bbfb3de5dc1c6709fedb46d6c89c10da114ab5fc3d281; Download | Favorite | View

OpenSSL Toolkit 3.2.3: Posted Sep 4, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed possible denial of service in X.509 name checks. Fixed possible buffer overread in SSL_select_next_proto().; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-5535, CVE-2024-6119; SHA-256 | 52b5f1c6b8022bc5868c308c54fb77705e702d6c6f4594f99a0df216acf46239; Download | Favorite | View

OpenSSL Toolkit 3.1.7: Posted Sep 4, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed possible denial of service in X.509 name checks. Fixed possible buffer overread in SSL_select_next_proto().; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-5535, CVE-2024-6119; SHA-256 | 053a31fa80cf4aebe1068c987d2ef1e44ce418881427c4464751ae800c31d06c; Download | Favorite | View

OpenSSL Toolkit 3.0.15: Posted Sep 4, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed possible denial of service in X.509 name checks. Fixed possible buffer overread in SSL_select_next_proto().; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-5535, CVE-2024-6119; SHA-256 | 23c666d0edf20f14249b3d8f0368acaee9ab585b09e1de82107c66e1f3ec9533; Download | Favorite | View

OpenSSL Toolkit 3.3.1: Posted Jun 6, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed potential use after free after SSL_free_buffers() is called. Fixed an issue where checking excessively long DSA keys or parameters may be very slow.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-4603, CVE-2024-4741; SHA-256 | 777cd596284c883375a2a7a11bf5d2786fc5413255efab20c50d6ffe6d020b7e; Download | Favorite | View

OpenSSL Toolkit 3.2.2: Posted Jun 6, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed potential use after free after SSL_free_buffers() is called. Fixed an issue where checking excessively long DSA keys or parameters may be very slow. Fixed unbounded memory growth with session handling in TLSv1.3.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-2511, CVE-2024-4603, CVE-2024-4741; SHA-256 | 197149c18d9e9f292c43f0400acaba12e5f52cacfe050f3d199277ea738ec2e7; Download | Favorite | View

OpenSSL Toolkit 3.1.6: Posted Jun 6, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed potential use after free after SSL_free_buffers() is called. Fixed an issue where checking excessively long DSA keys or parameters may be very slow. Fixed unbounded memory growth with session handling in TLSv1.3.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-2511, CVE-2024-4603, CVE-2024-4741; SHA-256 | 5d2be4036b478ef3cb0a854ca9b353072c3a0e26d8a56f8f0ab9fb6ed32d38d7; Download | Favorite | View

OpenSSL Toolkit 3.0.14: Posted Jun 6, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed potential use after free after SSL_free_buffers() is called. Fixed an issue where checking excessively long DSA keys or parameters may be very slow. Fixed unbounded memory growth with session handling in TLSv1.3.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2024-2511, CVE-2024-4603, CVE-2024-4741; SHA-256 | eeca035d4dd4e84fc25846d952da6297484afa0650a6f84c682e39df3a4123ca; Download | Favorite | View

OpenSSL Toolkit 3.2.1: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The latest stable version is the 3.2 series supported until 23rd November 2025.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 83c7329fe52c850677d75e5d0b0ca245309b97e8ecbcfdc1dfdc4ab9fac35b39; Download | Favorite | View

OpenSSL Toolkit 3.1.5: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1 series is supported until 14th March 2025.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 6ae015467dabf0469b139ada93319327be24b98251ffaeceda0221848dc09262; Download | Favorite | View

OpenSSL Toolkit 3.0.13: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.0 series is a Long Term Support (LTS) version and is supported until 7th September 2026.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 88525753f79d3bec27d2fa7c66aa0b92b3aa9498dafd93d7cfa4b3780cdae313; Download | Favorite | View

OpenSSL Toolkit 1.1.1w: Posted Sep 11, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed POLY1305 MAC implementation corrupting XMM registers on Windows.; tags | tool, encryption, protocol; advisories | CVE-2023-4807; SHA-256 | cf3098950cb4d853ad95c0841f1f9c6d3dc102dccfcacd521d93925208b76ac8; Download | Favorite | View

OpenSSL Toolkit 3.1.2: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus. No longer ignoring empty associated data entries with AES-SIV. A change has been made to the enable-fips option.; tags | encryption, protocol; systems | unix; advisories | CVE-2023-2975, CVE-2023-3446, CVE-2023-3817; SHA-256 | a0ce69b8b97ea6a35b96875235aa453b966ba3cba8af2de23657d8b6767d6539; Download | Favorite | View

OpenSSL Toolkit 3.0.10: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus. No longer ignoring empty associated data entries with AES-SIV.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-2975, CVE-2023-3446, CVE-2023-3817; SHA-256 | 1761d4f5b13a1028b9b6f3d4b8e17feb0cedc9370f6afe61d7193d2cdce83323; Download | Favorite | View

OpenSSL Toolkit 1.1.1v: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-3446, CVE-2023-3817; SHA-256 | d6697e2871e77238460402e9362d47d18382b15ef9f246aba6c7bd780d38a6b0; Download | Favorite | View

OpenSSL Toolkit 3.1.1: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-1255, CVE-2023-2650; SHA-256 | b3aa61334233b852b63ddb048df181177c2c659eb9d4376008118f9c08d07674; Download | Favorite | View

OpenSSL Toolkit 3.0.9: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-1255, CVE-2023-2650; SHA-256 | eb1ab04781474360f77c318ab89d8c5a03abc38e63d65a603cabbf1b00a1dc90; Download | Favorite | View

OpenSSL Toolkit 1.1.1u: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-2650; SHA-256 | e2f8d84b523eecd06c7be7626830370300fbcc15386bf5142d72758f6963ebc6; Download | Favorite | View

OpenSSL Toolkit 3.1.0: Posted Mar 21, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: SSL 3, TLS 1.0, TLS 1.1, and DTLS 1.0 only work at security level 0. Performance enhancements and new platform support including new assembler code algorithm implementations. Deprecated LHASH statistics functions. FIPS 140-3 compliance changes.; tags | tool, encryption, protocol; systems | unix; SHA-256 | aaa925ad9828745c4cad9d9efeb273deca820f2cdcf2c3ac7d7c1212b7c497b4; Download | Favorite | View

OpenSSL Toolkit 3.0.8: Posted Feb 8, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed NULL dereference during PKCS7 data verification. Fixed X.400 address type confusion in X.509 GeneralName. Fixed NULL dereference validating DSA public key. Fixed invalid pointer dereference in d2i_PKCS7 functions. Fixed use-after-free following BIO_new_NDEF. Fixed double-free after calling PEM_read_bio_ex. Fixed timing oracle in RSA decryption. Fixed X.509 Name Constraints read buffer overflow. Fixed X.509 policy constraints double locking.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-3996, CVE-2022-4203, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, CVE-2023-0401; SHA-256 | 6c13d2bf38fdf31eac3ce2a347073673f5d63263398f1f69d0df4a41253e4b3e; Download | Favorite | View

OpenSSL Toolkit 1.1.1t: Posted Feb 8, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed X.400 address type confusion in X.509 GeneralName. Fixed a use-after-free following BIO_new_NDEF. Fixed a double-free after calling PEM_read_bio_ex. Fixed a timing oracle in RSA decryption.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0286; SHA-256 | 8dee9b24bdb1dcbf0c3d1e9b02fb8f6bf22165e807f45adeb7c9677536859d3b; Download | Favorite | View

OpenSSL Toolkit 3.0.7: Posted Nov 2, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Added RIPEMD160 to the default provider. Fixed regressions introduced in 3.0.6 version. Fixed two buffer overflows in punycode decoding functions.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-3602, CVE-2022-3786; SHA-256 | 83049d042a260e696f62406ac5c08bf706fd84383f945cf21bd61e9ed95c396e; Download | Favorite | View

OpenSSL Toolkit 1.1.1s: Posted Nov 2, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a regression introduced in OpenSSL 1.1.1r not refreshing the certificate data to be signed before signing the certificate.; tags | tool, encryption, protocol; systems | unix; SHA-256 | c5ac01e760ee6ff0dab61d6b2bbd30146724d063eb322180c6f18a6f74e4b6aa; Download | Favorite | View

OpenSSL Toolkit 3.0.5: Posted Jul 5, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue. An AES OCB mode issue was also addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2097, CVE-2022-2274; SHA-256 | aa7d8d9bef71ad6525c55ba11e5f4397889ce49c2c9349dcea6d3e4f0b024a7a; Download | Favorite | View

OpenSSL Toolkit 1.1.1q: Posted Jul 5, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed AES OCB failure to encrypt some bytes on 32-bit x86 platforms.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2097; SHA-256 | d7939ce614029cdff0b6c20f0e2e5703158a489a72b2507b8bd51bf8c8fd10ca; Download | Favorite | View

Page 1 of 12 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 297 files
Ubuntu 69 files
Debian 20 files
Gentoo 8 files
Apple 6 files
Google Security Research 4 files
LiquidWorm 4 files
Spencer McIntyre 3 files
Alter Prime 3 files
Jann Horn 3 files

Files

Top Authors In Last 30 Days

Recent News