Fluid Attacks Database

Description

multiple issues

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
alpine v3.12	openssl	=1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
alpine v3.13	openssl	=1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
alpine v3.14	openssl	=1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
debian 14	openssl	>=0 <1.1.1k-1	1.1.1k-1
alpine v3.20	openssl	=1.1.1-r0 \|\| =1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
debian 12	openssl	>=0 <1.1.1k-1	1.1.1k-1
debian 13	openssl	>=0 <1.1.1k-1	1.1.1k-1
alpine v3.11	openssl	=1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1g-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
alpine v3.17	openssl	=1.1.1-r0 \|\| =1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0
alpine v3.18	openssl	=1.1.1-r0 \|\| =1.1.1-r1 \|\| =1.1.1-r2 \|\| =1.1.1-r3 \|\| =1.1.1-r4 \|\| =1.1.1-r5 \|\| =1.1.1a-r0 \|\| =1.1.1a-r1 \|\| =1.1.1b-r0 \|\| =1.1.1b-r1 \|\| =1.1.1c-r0 \|\| =1.1.1c-r1 \|\| =1.1.1d-r1 \|\| =1.1.1d-r2 \|\| =1.1.1d-r3 \|\| =1.1.1d-r4 \|\| =1.1.1d-r5 \|\| =1.1.1e-r0 \|\| =1.1.1f-r0 \|\| =1.1.1g-r0 \|\| =1.1.1h-r0 \|\| =1.1.1i-r0 \|\| =1.1.1j-r0 \|\| >=0 <1.1.1k-r0	1.1.1k-r0

1-10 of 27

Aliases

1. CVE-2021-34492. NVD-2021-34493. OSV-ALPINE-2021-34494. OSV-2021-34495. OSV-DEBIAN-2021-34496. GCVE-2021-34497. SECURITY-CVE-2021-34498. SECURITY-TRACKER-CVE-2021-34499. security.gentoo.org10. lists.debian.org

References

1. https://github.com/riptl/cve-2021-34492. https://www.openssl.org/news/secadv/20210325.txt3. https://www.oracle.com/security-alerts/cpuoct2021.html4. https://www.oracle.com/security-alerts/cpujul2022.html5. https://www.oracle.com/security-alerts/cpuapr2022.html6. https://www.oracle.com/security-alerts/cpuApr2021.html7. https://www.oracle.com//security-alerts/cpujul2021.html8. https://www.debian.org/security/2021/dsa-48759. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd10. https://security.netapp.com/advisory/ntap-20210513-000211. https://security.netapp.com/advisory/ntap-20210326-000612. https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc13. https://rustsec.org/advisories/RUSTSEC-2021-0055.html14. https://rustsec.org/advisories/RUSTSEC-2021-005515. https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-001316. https://lists.fedoraproject.org/archives/list/[email protected]/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP17. https://kc.mcafee.com/corporate/index?page=content&id=SB1035618. https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA4484519. https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d9614820. https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf21. https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf22. http://www.openwall.com/lists/oss-security/2021/03/27/123. http://www.openwall.com/lists/oss-security/2021/03/27/224. http://www.openwall.com/lists/oss-security/2021/03/28/325. http://www.openwall.com/lists/oss-security/2021/03/28/4

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.