| Definition ID | Class | Title | Last Modified |
|---|
| oval:org.cisecurity:def:1900 | V | The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of-order messages - CVE-2016-2179 | 2017-03-03 |
| oval:org.cisecurity:def:1901 | V | The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results - CVE-2016-2182 | 2017-03-03 |
| oval:org.cisecurity:def:1902 | V | The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations - CVE-2016-2178 | 2017-03-03 |
| oval:org.cisecurity:def:1903 | V | The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length - CVE-2016-6302 | 2017-03-03 |
| oval:org.cisecurity:def:1904 | V | Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service - CVE-2016-6303 | 2017-03-03 |
| oval:org.cisecurity:def:1905 | V | The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service - CVE-2016-2180 | 2017-03-03 |
| oval:org.cisecurity:def:1906 | V | The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number - CVE-2016-2181 | 2017-03-03 |
| oval:org.cisecurity:def:1907 | V | OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks - CVE-2016-2177 | 2017-03-03 |