{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"OpenSSL 1.x versions ant\u00e9rieures \u00e0 1.0.0f ;","product":{"name":"OpenSSL","vendor":{"name":"OpenSSL","scada":false}}},{"description":"OpenSSL 0.x versions ant\u00e9rieures \u00e0 0.9.8s.","product":{"name":"OpenSSL","vendor":{"name":"OpenSSL","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s corrig\u00e9es dans OpenSSL permettent \u00e0 une\npersonne malveillante d'ex\u00e9cuter du code arbitraire \u00e0 distance, de\nprovoquer un d\u00e9ni de service \u00e0 distance, ou de porter atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2011-4619","url":"https://www.cve.org/CVERecord?id=CVE-2011-4619"},{"name":"CVE-2011-4576","url":"https://www.cve.org/CVERecord?id=CVE-2011-4576"},{"name":"CVE-2011-4577","url":"https://www.cve.org/CVERecord?id=CVE-2011-4577"},{"name":"CVE-2011-4108","url":"https://www.cve.org/CVERecord?id=CVE-2011-4108"},{"name":"CVE-2011-4109","url":"https://www.cve.org/CVERecord?id=CVE-2011-4109"},{"name":"CVE-2012-0027","url":"https://www.cve.org/CVERecord?id=CVE-2012-0027"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 HP du 19 janvier 2012\u00a0:","url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03141193"}],"reference":"CERTA-2012-AVI-006","revisions":[{"description":"version initiale.","revision_date":"2012-01-10T00:00:00.000000"},{"description":"ajout du bulletin de s\u00e9curit\u00e9 HP.","revision_date":"2012-01-31T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s corrig\u00e9es dans OpenSSL permettent\nl'ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance, ou une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans OpenSSL","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 OpenSSL du 04 janvier 2012","url":"http://openssl.org/news/secadv_20120104.txt"}]}