Showing 1 - 25 of 319

Files

OpenSSL Toolkit 3.2.1: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The latest stable version is the 3.2 series supported until 23rd November 2025.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 83c7329fe52c850677d75e5d0b0ca245309b97e8ecbcfdc1dfdc4ab9fac35b39; Download | Favorite | View

OpenSSL Toolkit 3.1.5: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1 series is supported until 14th March 2025.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 6ae015467dabf0469b139ada93319327be24b98251ffaeceda0221848dc09262; Download | Favorite | View

OpenSSL Toolkit 3.0.13: Posted Jan 31, 2024; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.0 series is a Long Term Support (LTS) version and is supported until 7th September 2026.; Changes: 5 security issues have been addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-5678, CVE-2023-6129, CVE-2023-6237, CVE-2024-0727; SHA-256 | 88525753f79d3bec27d2fa7c66aa0b92b3aa9498dafd93d7cfa4b3780cdae313; Download | Favorite | View

OpenSSL Toolkit 1.1.1w: Posted Sep 11, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed POLY1305 MAC implementation corrupting XMM registers on Windows.; tags | tool, encryption, protocol; advisories | CVE-2023-4807; SHA-256 | cf3098950cb4d853ad95c0841f1f9c6d3dc102dccfcacd521d93925208b76ac8; Download | Favorite | View

OpenSSL Toolkit 3.1.2: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus. No longer ignoring empty associated data entries with AES-SIV. A change has been made to the enable-fips option.; tags | encryption, protocol; systems | unix; advisories | CVE-2023-2975, CVE-2023-3446, CVE-2023-3817; SHA-256 | a0ce69b8b97ea6a35b96875235aa453b966ba3cba8af2de23657d8b6767d6539; Download | Favorite | View

OpenSSL Toolkit 3.0.10: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus. No longer ignoring empty associated data entries with AES-SIV.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-2975, CVE-2023-3446, CVE-2023-3817; SHA-256 | 1761d4f5b13a1028b9b6f3d4b8e17feb0cedc9370f6afe61d7193d2cdce83323; Download | Favorite | View

OpenSSL Toolkit 1.1.1v: Posted Aug 1, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed excessive time spent checking DH q parameter value. Fixed DH_check() excessive time with over sized modulus.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-3446, CVE-2023-3817; SHA-256 | d6697e2871e77238460402e9362d47d18382b15ef9f246aba6c7bd780d38a6b0; Download | Favorite | View

OpenSSL Toolkit 3.1.1: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-1255, CVE-2023-2650; SHA-256 | b3aa61334233b852b63ddb048df181177c2c659eb9d4376008118f9c08d07674; Download | Favorite | View

OpenSSL Toolkit 3.0.9: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-1255, CVE-2023-2650; SHA-256 | eb1ab04781474360f77c318ab89d8c5a03abc38e63d65a603cabbf1b00a1dc90; Download | Favorite | View

OpenSSL Toolkit 1.1.1u: Posted May 30, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Mitigation for for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. Fixed documentation of X509_VERIFY_PARAM_add0_policy(). Fixed handling of invalid certificate policies in leaf certificates. Limited the number of nodes created in a policy tree.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-2650; SHA-256 | e2f8d84b523eecd06c7be7626830370300fbcc15386bf5142d72758f6963ebc6; Download | Favorite | View

OpenSSL Toolkit 3.1.0: Posted Mar 21, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.1.x series is the current major version of OpenSSL.; Changes: SSL 3, TLS 1.0, TLS 1.1, and DTLS 1.0 only work at security level 0. Performance enhancements and new platform support including new assembler code algorithm implementations. Deprecated LHASH statistics functions. FIPS 140-3 compliance changes.; tags | tool, encryption, protocol; systems | unix; SHA-256 | aaa925ad9828745c4cad9d9efeb273deca820f2cdcf2c3ac7d7c1212b7c497b4; Download | Favorite | View

OpenSSL Toolkit 3.0.8: Posted Feb 8, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed NULL dereference during PKCS7 data verification. Fixed X.400 address type confusion in X.509 GeneralName. Fixed NULL dereference validating DSA public key. Fixed invalid pointer dereference in d2i_PKCS7 functions. Fixed use-after-free following BIO_new_NDEF. Fixed double-free after calling PEM_read_bio_ex. Fixed timing oracle in RSA decryption. Fixed X.509 Name Constraints read buffer overflow. Fixed X.509 policy constraints double locking.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-3996, CVE-2022-4203, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, CVE-2023-0401; SHA-256 | 6c13d2bf38fdf31eac3ce2a347073673f5d63263398f1f69d0df4a41253e4b3e; Download | Favorite | View

OpenSSL Toolkit 1.1.1t: Posted Feb 8, 2023; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer and Transport Layer Security protocols with full-strength cryptography world-wide.; Changes: Fixed X.400 address type confusion in X.509 GeneralName. Fixed a use-after-free following BIO_new_NDEF. Fixed a double-free after calling PEM_read_bio_ex. Fixed a timing oracle in RSA decryption.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0286; SHA-256 | 8dee9b24bdb1dcbf0c3d1e9b02fb8f6bf22165e807f45adeb7c9677536859d3b; Download | Favorite | View

OpenSSL Toolkit 3.0.7: Posted Nov 2, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Added RIPEMD160 to the default provider. Fixed regressions introduced in 3.0.6 version. Fixed two buffer overflows in punycode decoding functions.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-3602, CVE-2022-3786; SHA-256 | 83049d042a260e696f62406ac5c08bf706fd84383f945cf21bd61e9ed95c396e; Download | Favorite | View

OpenSSL Toolkit 1.1.1s: Posted Nov 2, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a regression introduced in OpenSSL 1.1.1r not refreshing the certificate data to be signed before signing the certificate.; tags | tool, encryption, protocol; systems | unix; SHA-256 | c5ac01e760ee6ff0dab61d6b2bbd30146724d063eb322180c6f18a6f74e4b6aa; Download | Favorite | View

OpenSSL Toolkit 3.0.5: Posted Jul 5, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. SSL/TLS servers or other servers using 2048 bit RSA private keys running on machines supporting AVX512IFMA instructions of the X86_64 architecture are affected by this issue. An AES OCB mode issue was also addressed.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2097, CVE-2022-2274; SHA-256 | aa7d8d9bef71ad6525c55ba11e5f4397889ce49c2c9349dcea6d3e4f0b024a7a; Download | Favorite | View

OpenSSL Toolkit 1.1.1q: Posted Jul 5, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed AES OCB failure to encrypt some bytes on 32-bit x86 platforms.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2097; SHA-256 | d7939ce614029cdff0b6c20f0e2e5703158a489a72b2507b8bd51bf8c8fd10ca; Download | Favorite | View

OpenSSL Toolkit 1.1.1p: Posted Jun 21, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed additional bugs in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2068; SHA-256 | bf61b62aaa66c7c7639942a94de4c9ae8280c08f17d4eac2e44644d9fc8ace6f; Download | Favorite | View

OpenSSL Toolkit 3.0.3: Posted May 3, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection. Fixed a bug in the function OCSP_basic_verify that verifies the signer certificate on an OCSP response. Fixed a bug where the RC4-MD5 ciphersuite incorrectly used the AAD data as the MAC key. Fixed a bug in the OPENSSL_LH_flush() function that breaks reuse of the memory occupied by the removed hash table entries.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-1292, CVE-2022-1343, CVE-2022-1434, CVE-2022-1473; SHA-256 | ee0078adcef1de5f003c62c80cc96527721609c6f3bb42b7795df31f8b558c0b; Download | Favorite | View

OpenSSL Toolkit 1.1.1o: Posted May 3, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-1292; SHA-256 | 9384a2b0570dd80358841464677115df785edb941c71211f75076d72fe6b438f; Download | Favorite | View

OpenSSL Toolkit 3.0.2: Posted Mar 16, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever for non-prime moduli. Added ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL greater than or equal to 3. Made the AES constant time code for no-asm configurations optional due to the resulting 95% performance degradation. Fixed PEM_write_bio_PKCS8PrivateKey() to make it possible to use empty passphrase strings. The negative return value handling of the certificate verification callback was reverted. The replacement is to set the verification retry state with the SSL_set_retry_verify() function.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 98e91ccead4d4756ae3c9cde5e09191a8e586d9f4d50838e7ec09d6411dfdb63; Download | Favorite | View

OpenSSL Toolkit 1.1.1n: Posted Mar 16, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever for non-prime moduli. Added ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL greater than or equal to 3.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-0778; SHA-256 | 40dceb51a4f6a5275bde0e6bf20ef4b91bfc32ed57c0552e2e8e15463372b17a; Download | Favorite | View

OpenSSL Toolkit 1.1.1m: Posted Dec 15, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Made a change to avoid loading of a dynamic engine twice. Fixed building on Debian with kfreebsd kernels. Prioritized DANE TLSA issuer certs over peer certs. Fixed random API for MacOS prior to 10.12.; tags | tool, encryption, protocol; systems | unix; SHA-256 | f89199be8b23ca45fc7cb9f1d8d3ee67312318286ad030f5316aca6462db6c96; Download | Favorite | View

OpenSSL Toolkit 1.1.1l: Posted Aug 24, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed an SM2 Decryption Buffer Overflow. Fixed various read buffer overruns processing ASN.1 strings.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2021-3711, CVE-2021-3712; SHA-256 | 0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1; Download | Favorite | View

OpenSSL Toolkit 1.1.1k: Posted Mar 25, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a problem with verifying a certificate chain when using the X509_V_FLAG_X509_STRICT flag. Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2021-3449, CVE-2021-3450; SHA-256 | 892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5; Download | Favorite | View

Page 1 of 13 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 184 files
Ubuntu 64 files
Debian 22 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Google Security Research 6 files
Apple 6 files
malvuln 4 files
Ersin Erenler 4 files
E1.Coders 4 files

Files

Top Authors In Last 30 Days

Recent News