CVE-2011-4576

Source
https://nvd.nist.gov/vuln/detail/CVE-2011-4576
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2011-4576.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2011-4576
Downstream
Related
Published
2012-01-06T01:55:00Z
Modified
2025-08-09T20:01:28Z
Summary
[none]
Details

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer.

References

Affected packages