[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-1377":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":78,"related":79,"reserved_at":9,"published_at":81,"modified_at":82,"state":83,"summary":84,"references_raw":93,"kevs":260,"epss":261,"epss_history":264,"metrics":524,"affected":529},"CVE-2009-1377","The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of \"future epoch\" DTLS records that are buffered in a queue, aka \"DTLS record buffer limitation bug.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76],{"_key":73},"RHSA-2009:1335",{"_key":75},"OPENSUSE-SU-2024:11127-1",{"_key":77},"DEBIAN-CVE-2009-1377",[],[80],{"_key":75},"2009-05-19T19:00:00.000Z","2024-08-07T05:13:25.060Z","Modified",{"cisa_kev":85,"cisa_ransomware":85,"cisa_vendor":9,"epss_severity":86,"epss_score":87,"severity":88,"severity_score":89,"severity_version":90,"severity_source":91,"severity_vector":92,"severity_status":83},false,"low",0.02884,"medium",5,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:P",[94,101,109,115,119,124,131,135,140,145,150,154,158,165,170,174,179,184,189,193,197,201,206,211,215,219,223,228,232,236,240,244,248,252,256],{"url":95,"sources":96,"tags":98},"http://secunia.com/advisories/42724",[97,91],"cve.org",[99,100],"Third Party Advisory","X Refsource SECUNIA",{"url":102,"sources":103,"tags":104},"http://rt.openssl.org/Ticket/Display.html?id=1930&user=guest&pass=guest",[97,91],[105,106,107,108,99],"X Refsource CONFIRM","Broken Link","Mailing List","Patch",{"url":110,"sources":111,"tags":112},"http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.663049",[97,91],[113,114,107,99],"Vendor Advisory","X Refsource SLACKWARE",{"url":116,"sources":117,"tags":118},"http://secunia.com/advisories/38794",[97,91],[99,100],{"url":120,"sources":121,"tags":122},"http://lists.vmware.com/pipermail/security-announce/2010/000082.html",[97,91],[107,123,99],"X Refsource MLIST",{"url":125,"sources":126,"tags":127},"http://www.vupen.com/english/advisories/2009/1377",[97,91],[128,129,130,99],"VDB Entry","X Refsource VUPEN","Permissions Required",{"url":132,"sources":133,"tags":134},"http://secunia.com/advisories/35729",[97,91],[99,100],{"url":136,"sources":137,"tags":138},"http://security.gentoo.org/glsa/glsa-200912-01.xml",[97,91],[113,139,99],"X Refsource GENTOO",{"url":141,"sources":142,"tags":143},"http://www.redhat.com/support/errata/RHSA-2009-1335.html",[97,91],[113,144,99],"X Refsource REDHAT",{"url":146,"sources":147,"tags":148},"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444",[97,91],[113,149,106,99],"X Refsource HP",{"url":151,"sources":152,"tags":153},"http://secunia.com/advisories/38761",[97,91],[99,100],{"url":155,"sources":156,"tags":157},"http://secunia.com/advisories/37003",[97,91],[99,100],{"url":159,"sources":160,"tags":161},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9663",[97,91],[128,162,163,164],"Signature","X Refsource OVAL","Tool Signature",{"url":166,"sources":167,"tags":168},"https://launchpad.net/bugs/cve/2009-1377",[97,91],[169,99],"X Refsource MISC",{"url":171,"sources":172,"tags":173},"http://secunia.com/advisories/36533",[97,91],[99,100],{"url":175,"sources":176,"tags":177},"http://www.securitytracker.com/id?1022241",[97,91],[128,178,99],"X Refsource SECTRACK",{"url":180,"sources":181,"tags":182},"http://www.ubuntu.com/usn/USN-792-1",[97,91],[113,183,99],"X Refsource UBUNTU",{"url":185,"sources":186,"tags":187},"http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html",[97,91],[113,188,99],"X Refsource SUSE",{"url":190,"sources":191,"tags":192},"http://voodoo-circle.sourceforge.net/sa/sa-20091012-01.html",[97,91],[105,99],{"url":194,"sources":195,"tags":196},"http://www.openwall.com/lists/oss-security/2009/05/18/1",[97,91],[107,123],{"url":198,"sources":199,"tags":200},"http://marc.info/?l=openssl-dev&m=124247675613888&w=2",[97,91],[107,123,108,99],{"url":202,"sources":203,"tags":204},"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-009.txt.asc",[97,91],[113,205,106,99],"X Refsource NETBSD",{"url":207,"sources":208,"tags":209},"http://www.securityfocus.com/bid/35001",[97,91],[128,210,99],"X Refsource BID",{"url":212,"sources":213,"tags":214},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6683",[97,91],[128,162,163,164],{"url":216,"sources":217,"tags":218},"http://secunia.com/advisories/38834",[97,91],[99,100],{"url":220,"sources":221,"tags":222},"http://cvs.openssl.org/chngview?cn=18187",[97,91],[105,106,108,99],{"url":224,"sources":225,"tags":226},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:120",[97,91],[113,227,106],"X Refsource MANDRIVA",{"url":229,"sources":230,"tags":231},"http://secunia.com/advisories/35461",[97,91],[99,100],{"url":233,"sources":234,"tags":235},"http://secunia.com/advisories/35128",[97,91],[99,100,113],{"url":237,"sources":238,"tags":239},"http://secunia.com/advisories/35571",[97,91],[99,100],{"url":241,"sources":242,"tags":243},"http://secunia.com/advisories/35416",[97,91],[99,100],{"url":245,"sources":246,"tags":247},"http://sourceforge.net/mailarchive/message.php?msg_name=4AD43807.7080105%40users.sourceforge.net",[97,91],[105,106],{"url":249,"sources":250,"tags":251},"https://kb.bluecoat.com/index?page=content&id=SA50",[97,91],[105,106],{"url":253,"sources":254,"tags":255},"http://secunia.com/advisories/42733",[97,91],[99,100],{"url":257,"sources":258,"tags":259},"http://www.vupen.com/english/advisories/2010/0528",[97,91],[128,129,130,99],[],{"date":262,"score":87,"percentile":263},"2026-06-04",0.86568,[265,269,272,274,277,280,283,286,288,291,294,297,300,303,306,309,312,315,318,321,323,326,328,330,332,335,338,340,344,347,350,354,357,359,362,365,368,371,374,377,380,382,385,387,390,393,395,398,401,404,407,410,413,416,420,423,426,429,432,436,439,442,445,447,450,452,455,458,461,463,465,468,471,473,476,479,482,485,488,491,494,497,500,503,506,509,512,515,518,521],{"date":266,"score":267,"percentile":268},"2025-11-04",0.03442,0.86984,{"date":270,"score":267,"percentile":271},"2025-11-05",0.86987,{"date":273,"score":267,"percentile":268},"2025-11-06",{"date":275,"score":267,"percentile":276},"2025-11-07",0.86993,{"date":278,"score":267,"percentile":279},"2025-11-08",0.86997,{"date":281,"score":267,"percentile":282},"2025-11-09",0.86991,{"date":284,"score":267,"percentile":285},"2025-11-10",0.8699,{"date":287,"score":267,"percentile":279},"2025-11-11",{"date":289,"score":267,"percentile":290},"2025-11-12",0.87002,{"date":292,"score":267,"percentile":293},"2025-11-13",0.87007,{"date":295,"score":267,"percentile":296},"2025-11-14",0.87009,{"date":298,"score":267,"percentile":299},"2025-11-15",0.87004,{"date":301,"score":267,"percentile":302},"2025-11-16",0.87006,{"date":304,"score":267,"percentile":305},"2025-11-17",0.87003,{"date":307,"score":267,"percentile":308},"2025-11-18",0.86295,{"date":310,"score":267,"percentile":311},"2025-11-19",0.86296,{"date":313,"score":267,"percentile":314},"2025-11-20",0.86297,{"date":316,"score":267,"percentile":317},"2025-11-21",0.87013,{"date":319,"score":267,"percentile":320},"2025-11-22",0.87008,{"date":322,"score":267,"percentile":302},"2025-11-23",{"date":324,"score":267,"percentile":325},"2025-11-24",0.87005,{"date":327,"score":267,"percentile":302},"2025-11-25",{"date":329,"score":267,"percentile":325},"2025-11-26",{"date":331,"score":267,"percentile":293},"2025-11-27",{"date":333,"score":267,"percentile":334},"2025-11-28",0.86995,{"date":336,"score":267,"percentile":337},"2025-11-29",0.87068,{"date":339,"score":267,"percentile":337},"2025-11-30",{"date":341,"score":342,"percentile":343},"2025-12-01",0.02129,0.83688,{"date":345,"score":342,"percentile":346},"2025-12-02",0.8369,{"date":348,"score":342,"percentile":349},"2025-12-03",0.83692,{"date":351,"score":352,"percentile":353},"2025-12-04",0.04306,0.88438,{"date":355,"score":352,"percentile":356},"2025-12-05",0.88442,{"date":358,"score":352,"percentile":356},"2025-12-06",{"date":360,"score":352,"percentile":361},"2025-12-07",0.88443,{"date":363,"score":352,"percentile":364},"2025-12-08",0.88444,{"date":366,"score":352,"percentile":367},"2025-12-09",0.88457,{"date":369,"score":352,"percentile":370},"2025-12-10",0.88475,{"date":372,"score":352,"percentile":373},"2025-12-11",0.88477,{"date":375,"score":352,"percentile":376},"2025-12-12",0.88479,{"date":378,"score":352,"percentile":379},"2025-12-13",0.8848,{"date":381,"score":352,"percentile":376},"2025-12-14",{"date":383,"score":352,"percentile":384},"2025-12-15",0.88483,{"date":386,"score":352,"percentile":384},"2025-12-16",{"date":388,"score":352,"percentile":389},"2025-12-17",0.88487,{"date":391,"score":352,"percentile":392},"2025-12-18",0.88491,{"date":394,"score":352,"percentile":392},"2025-12-19",{"date":396,"score":352,"percentile":397},"2025-12-20",0.8849,{"date":399,"score":87,"percentile":400},"2025-12-21",0.85874,{"date":402,"score":87,"percentile":403},"2025-12-22",0.85869,{"date":405,"score":87,"percentile":406},"2025-12-23",0.85875,{"date":408,"score":87,"percentile":409},"2025-12-24",0.85878,{"date":411,"score":87,"percentile":412},"2025-12-25",0.85894,{"date":414,"score":87,"percentile":415},"2025-12-26",0.85895,{"date":417,"score":418,"percentile":419},"2025-12-27",0.02938,0.86059,{"date":421,"score":87,"percentile":422},"2025-12-28",0.85887,{"date":424,"score":87,"percentile":425},"2025-12-29",0.85881,{"date":427,"score":87,"percentile":428},"2025-12-30",0.85889,{"date":430,"score":87,"percentile":431},"2025-12-31",0.85898,{"date":433,"score":434,"percentile":435},"2026-01-01",0.01807,0.82439,{"date":437,"score":434,"percentile":438},"2026-01-02",0.82435,{"date":440,"score":434,"percentile":441},"2026-01-03",0.82429,{"date":443,"score":87,"percentile":444},"2026-01-04",0.85896,{"date":446,"score":87,"percentile":415},"2026-01-05",{"date":448,"score":87,"percentile":449},"2026-01-06",0.85897,{"date":451,"score":87,"percentile":449},"2026-01-07",{"date":453,"score":87,"percentile":454},"2026-01-08",0.85907,{"date":456,"score":87,"percentile":457},"2026-01-09",0.85906,{"date":459,"score":87,"percentile":460},"2026-01-10",0.85902,{"date":462,"score":87,"percentile":449},"2026-01-11",{"date":464,"score":87,"percentile":412},"2026-01-12",{"date":466,"score":87,"percentile":467},"2026-01-13",0.85888,{"date":469,"score":87,"percentile":470},"2026-01-14",0.85903,{"date":472,"score":87,"percentile":470},"2026-01-15",{"date":474,"score":87,"percentile":475},"2026-01-16",0.85909,{"date":477,"score":87,"percentile":478},"2026-01-17",0.85913,{"date":480,"score":87,"percentile":481},"2026-01-18",0.85911,{"date":483,"score":87,"percentile":484},"2026-01-19",0.8591,{"date":486,"score":87,"percentile":487},"2026-01-20",0.85908,{"date":489,"score":87,"percentile":490},"2026-01-21",0.85914,{"date":492,"score":87,"percentile":493},"2026-01-22",0.85918,{"date":495,"score":87,"percentile":496},"2026-01-23",0.8593,{"date":498,"score":87,"percentile":499},"2026-01-24",0.85937,{"date":501,"score":87,"percentile":502},"2026-01-25",0.85934,{"date":504,"score":87,"percentile":505},"2026-01-26",0.85932,{"date":507,"score":87,"percentile":508},"2026-01-27",0.85938,{"date":510,"score":87,"percentile":511},"2026-01-28",0.85943,{"date":513,"score":87,"percentile":514},"2026-01-29",0.85946,{"date":516,"score":87,"percentile":517},"2026-01-30",0.85952,{"date":519,"score":87,"percentile":520},"2026-01-31",0.8595,{"date":522,"score":434,"percentile":523},"2026-02-01",0.82487,[525],{"source":91,"cvss_v2_0":526,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":89,"baseSeverity":9,"vectorString":92,"impactScore":527,"exploitabilityScore":528},2.9,10,[530],{"ecosystem":9,"name":531,"vendor":9,"product":531,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":532},"OpenSSL",[533],{"version":534,"is_range":535,"range_type":536,"version_start":537,"version_start_type":538,"version_end":539,"version_end_type":540,"fixed_in":9},"gte0.9.8_lt0.9.8m",true,"cpe","0.9.8","including","0.9.8m","excluding"]