The OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Stunnel | Stunnel | 3.4a (including) | 3.4a (including) |
| Stunnel | Stunnel | 3.5 (including) | 3.5 (including) |
| Stunnel | Stunnel | 3.6 (including) | 3.6 (including) |
| Stunnel | Stunnel | 3.7 (including) | 3.7 (including) |
| Stunnel | Stunnel | 3.8 (including) | 3.8 (including) |
| Stunnel | Stunnel | 3.8p1 (including) | 3.8p1 (including) |
| Stunnel | Stunnel | 3.8p2 (including) | 3.8p2 (including) |
| Stunnel | Stunnel | 3.8p3 (including) | 3.8p3 (including) |
| Stunnel | Stunnel | 3.8p4 (including) | 3.8p4 (including) |
| Stunnel | Stunnel | 3.9 (including) | 3.9 (including) |
| Stunnel | Stunnel | 3.10 (including) | 3.10 (including) |
| Stunnel | Stunnel | 3.11 (including) | 3.11 (including) |
| Stunnel | Stunnel | 3.12 (including) | 3.12 (including) |
| Stunnel | Stunnel | 3.13 (including) | 3.13 (including) |
| Stunnel | Stunnel | 3.14 (including) | 3.14 (including) |
| Stunnel | Stunnel | 3.15 (including) | 3.15 (including) |
| Stunnel | Stunnel | 3.16 (including) | 3.16 (including) |
| Stunnel | Stunnel | 3.17 (including) | 3.17 (including) |
| Stunnel | Stunnel | 3.18 (including) | 3.18 (including) |
| Stunnel | Stunnel | 3.19 (including) | 3.19 (including) |
| Stunnel | Stunnel | 3.20 (including) | 3.20 (including) |
| Stunnel | Stunnel | 3.21 (including) | 3.21 (including) |
| Stunnel | Stunnel | 3.21a (including) | 3.21a (including) |
| Stunnel | Stunnel | 3.21b (including) | 3.21b (including) |
| Stunnel | Stunnel | 3.21c (including) | 3.21c (including) |
| Stunnel | Stunnel | 3.22 (including) | 3.22 (including) |
| Stunnel | Stunnel | 3.23 (including) | 3.23 (including) |
| Stunnel | Stunnel | 3.24 (including) | 3.24 (including) |
| Stunnel | Stunnel | 3.25 (including) | 3.25 (including) |
| Stunnel | Stunnel | 3.26 (including) | 3.26 (including) |
| Stunnel | Stunnel | 4.00 (including) | 4.00 (including) |
| Stunnel | Stunnel | 4.01 (including) | 4.01 (including) |
| Stunnel | Stunnel | 4.02 (including) | 4.02 (including) |
| Stunnel | Stunnel | 4.03 (including) | 4.03 (including) |
| Stunnel | Stunnel | 4.04 (including) | 4.04 (including) |
| Stunnel | Stunnel | 4.05 (including) | 4.05 (including) |
| Stunnel | Stunnel | 4.06 (including) | 4.06 (including) |
| Stunnel | Stunnel | 4.07 (including) | 4.07 (including) |
| Stunnel | Stunnel | 4.08 (including) | 4.08 (including) |
| Stunnel | Stunnel | 4.09 (including) | 4.09 (including) |
| Stunnel | Stunnel | 4.10 (including) | 4.10 (including) |
| Stunnel | Stunnel | 4.11 (including) | 4.11 (including) |
| Stunnel | Stunnel | 4.12 (including) | 4.12 (including) |
| Stunnel | Stunnel | 4.13 (including) | 4.13 (including) |
| Stunnel | Stunnel | 4.14 (including) | 4.14 (including) |
| Stunnel | Stunnel | 4.15 (including) | 4.15 (including) |
| Stunnel | Stunnel | 4.16 (including) | 4.16 (including) |
| Stunnel | Stunnel | 4.17 (including) | 4.17 (including) |
| Stunnel | Stunnel | 4.18 (including) | 4.18 (including) |
| Stunnel | Stunnel | 4.19 (including) | 4.19 (including) |
| Stunnel | Stunnel | 4.20 (including) | 4.20 (including) |
| Stunnel | Stunnel | 4.21 (including) | 4.21 (including) |
| Stunnel | Stunnel | 4.22 (including) | 4.22 (including) |
| Stunnel | Stunnel | 4.23 (including) | 4.23 (including) |
| Stunnel4 | Ubuntu | dapper | * |
| Stunnel4 | Ubuntu | feisty | * |
| Stunnel4 | Ubuntu | gutsy | * |
| Stunnel4 | Ubuntu | hardy | * |
| Stunnel4 | Ubuntu | upstream | * |