OpenSSL: 0.9.8zh → 1.0.2zp
OpenSSL · upgrade impact · Official site ↗
Fixed by upgrading to 1.0.2zp iVulnerabilities that affect 0.9.8zh but no longer affect 1.0.2zp — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2015-4000 LOW EPSS 92% ✓ cleared in 1.0.2zp CVE-2016-2107 MEDIUM EPSS 80% ✓ cleared in 1.0.2zp CVE-2016-2106 HIGH EPSS 67% ✓ cleared in 1.0.2zp CVE-2016-2109 HIGH EPSS 58% ✓ cleared in 1.0.2zp CVE-2013-6449 MEDIUM EPSS 47% ✓ cleared in 1.0.2zp CVE-2016-2108 CRITICAL EPSS 37% ✓ cleared in 1.0.2zp CVE-2021-4044 HIGH EPSS 33% ✓ cleared in 1.0.2zp CVE-2010-5298 MEDIUM EPSS 19% ✓ cleared in 1.0.2zp CVE-2016-2176 HIGH EPSS 7% ✓ cleared in 1.0.2zp CVE-2011-1945 LOW EPSS 5% ✓ cleared in 1.0.2zp CVE-2011-4619 MEDIUM EPSS 3% ✓ cleared in 1.0.2zp CVE-2011-4577 MEDIUM EPSS 3% ✓ cleared in 1.0.2zp CVE-2010-4252 HIGH EPSS 2% ✓ cleared in 1.0.2zp CVE-2011-4108 MEDIUM EPSS 1% ✓ cleared in 1.0.2zp CVE-2011-4576 MEDIUM EPSS 1% ✓ cleared in 1.0.2zp CVE-2012-0027 MEDIUM EPSS 1% ✓ cleared in 1.0.2zp CVE-2014-0076 LOW EPSS 0% ✓ cleared in 1.0.2zp CVE-2016-7056 MEDIUM EPSS 0% ✓ cleared in 1.0.2zp