跳转到帖子

Oracle Linux: CVE-2024-4741: ELSA-2024-9333: openssl and openssl-fips-provider security update (LOW) (Multiple Advisories)

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Oracle Linux: CVE-2024-4741: ELSA-2024-9333:openssl and openssl-fips-provider security update (LOW) (Multiple Advisories)

Severity
5
CVSS
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
Published
05/28/2024
Created
11/23/2024
Added
11/21/2024
Modified
11/27/2024

Description

A use-after-free vulnerability was found in OpenSSL. Calling the OpenSSL API SSL_free_buffers function may cause memory to be accessed that was previously freed in some situations.

Solution(s)

  • oracle-linux-upgrade-openssl
  • oracle-linux-upgrade-openssl-devel
  • oracle-linux-upgrade-openssl-fips-provider
  • oracle-linux-upgrade-openssl-fips-provider-so
  • oracle-linux-upgrade-openssl-libs
  • oracle-linux-upgrade-openssl-perl

References

  • https://attackerkb.com/topics/cve-2024-4741
  • CVE - 2024-4741
  • ELSA-2024-9333
  • 引用
  • Mention
    • 查看数 698
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表