Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2011-4109

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

Published: Jan 6, 2012
Updated: Apr 13, 2023
CVE: CVE-2011-4109
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
openssl / openssl	0.9.8b	0.9.8b.x
openssl / openssl	0.9.8m	0.9.8m.x
openssl / openssl	0.9.8c	0.9.8c.x
openssl / openssl	0.9.8n	0.9.8n.x
openssl / openssl	0.9.8p	0.9.8p.x
openssl / openssl	0.9.8e	0.9.8e.x
openssl / openssl	0.9.8g	0.9.8g.x
openssl / openssl	0.9.8k	0.9.8k.x
openssl / openssl	0.9.8d	0.9.8d.x
openssl / openssl	0.9.8j	0.9.8j.x
openssl / openssl	0.9.8l	0.9.8l.x
openssl / openssl	0.9.8r	0.9.8r.x
openssl / openssl	0.9.8a	0.9.8a.x
openssl / openssl	0.9.8o	0.9.8o.x
openssl / openssl	0.9.8q	0.9.8q.x
openssl / openssl	0.9.8	0.9.8.x
openssl / openssl	0.9.8i	0.9.8i.x
openssl / openssl	0.9.8f	0.9.8f.x
openssl / openssl	0.9.8h	0.9.8h.x