Multiple OpenSSL vulnerabilities in Sun SPARC Enterprise M-series XCP Firmware

Posted by RitwikGhoshal on Oracle Blogs See other posts from Oracle Blogs or by RitwikGhoshal
Published on Wed, 26 Sep 2012 00:48:46 +0000 Indexed on 2012/09/26 3:44 UTC
Read the original article Hit count: 260

Filed under:
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2008-5077 Improper Input Validation vulnerability 5.8 OpenSSL in XCP1113 Firmware
Sun SPARC Enterprise M3000 SPARC: 14216085
Sun SPARC Enterprise M4000 SPARC: 14216091
Sun SPARC Enterprise M5000 SPARC: 14216093
Sun SPARC Enterprise M8000 SPARC: 14216096
Sun SPARC Enterprise M9000 SPARC: 14216098
CVE-2008-7270 Cryptographic Issues vulnerability 4.3
CVE-2009-0590 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability 5.0
CVE-2009-3245 Improper Input Validation vulnerability 10.0
CVE-2010-4180 Cipher suite downgrade vulnerability 4.3

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

© Oracle Blogs or respective owner

Related posts about /Alerts