Action not permitted
Modal body text goes here.
Modal Title
Modal Body
Vulnerability from csaf_suse
Published
2016-03-16 10:28
Modified
2016-03-16 10:28
Summary
Security update for sles12-docker-image
Notes
Title of the patch
Security update for sles12-docker-image
Description of the patch
This update for sles12-docker-image fixes issues with binaries and libraries included in the image
where security updates have been made available in the last weeks.
glibc security issues fixed:
- CVE-2015-7547: A stack-based buffer overflow in getaddrinfo allowed remote attackers to cause a crash or execute arbitrary code via crafted and timed DNS responses (bsc#961721)
- CVE-2015-8777: Insufficient checking of LD_POINTER_GUARD environment variable allowed local attackers to bypass the pointer guarding protection of the dynamic loader on set-user-ID and set-group-ID programs (bsc#950944)
- CVE-2015-8776: Out-of-range time values passed to the strftime function may cause it to crash, leading to a denial of service, or potentially disclosure information (bsc#962736)
- CVE-2015-8778: Integer overflow in hcreate and hcreate_r could have caused an out-of-bound memory access. leading to application crashes or, potentially, arbitrary code execution (bsc#962737)
- CVE-2014-9761: A stack overflow (unbounded alloca) could have caused applications which process long strings with the nan function to crash or, potentially, execute arbitrary code. (bsc#962738)
- CVE-2015-8779: A stack overflow (unbounded alloca) in the catopen function could have caused applications which pass long strings to the catopen function to crash or, potentially execute arbitrary code. (bsc#962739)
glibc bugs fixed:
- bsc#955647: Resource leak in resolver
- bsc#956716: Don't do lock elision on an error checking mutex
- bsc#958315: Reinitialize dl_load_write_lock on fork
openssl security bugs fixed:
Security issues fixed:
- CVE-2016-0800 aka the 'DROWN' attack (bsc#968046):
OpenSSL was vulnerable to a cross-protocol attack that could lead to
decryption of TLS sessions by using a server supporting SSLv2 and
EXPORT cipher suites as a Bleichenbacher RSA padding oracle.
This update changes the openssl library to:
* Disable SSLv2 protocol support by default.
This can be overridden by setting the environment variable
'OPENSSL_ALLOW_SSL2' or by using SSL_CTX_clear_options using the
SSL_OP_NO_SSLv2 flag.
Note that various services and clients had already disabled SSL
protocol 2 by default previously.
* Disable all weak EXPORT ciphers by default. These can be reenabled
if required by old legacy software using the environment variable
'OPENSSL_ALLOW_EXPORT'.
- CVE-2016-0702 aka the 'CacheBleed' attack. (bsc#968050)
Various changes in the modular exponentation code were added that
make sure that it is not possible to recover RSA secret keys by
analyzing cache-bank conflicts on the Intel Sandy-Bridge microarchitecture.
Note that this was only exploitable if the malicious code was running
on the same hyper threaded Intel Sandy Bridge processor as the victim
thread performing decryptions.
- CVE-2016-0705 (bnc#968047):
A double free() bug in the DSA ASN1 parser code was fixed that could
be abused to facilitate a denial-of-service attack.
- CVE-2016-0797 (bnc#968048):
The BN_hex2bn() and BN_dec2bn() functions had a bug that could result
in an attempt to de-reference a NULL pointer leading to crashes.
This could have security consequences if these functions were ever
called by user applications with large untrusted hex/decimal data. Also,
internal usage of these functions in OpenSSL uses data from config files
or application command line arguments. If user developed applications
generated config file data based on untrusted data, then this could
have had security consequences as well.
- CVE-2016-0798 (bnc#968265)
The SRP user database lookup method SRP_VBASE_get_by_user() had a memory
leak that attackers could abuse to facility DoS attacks. To mitigate
the issue, the seed handling in SRP_VBASE_get_by_user() was disabled
even if the user has configured a seed. Applications are advised to
migrate to SRP_VBASE_get1_by_user().
- CVE-2016-0799 (bnc#968374)
On many 64 bit systems, the internal fmtstr() and doapr_outch()
functions could miscalculate the length of a string and attempt to
access out-of-bounds memory locations. These problems could have
enabled attacks where large amounts of untrusted data is passed to
the BIO_*printf functions. If applications use these functions in
this way then they could have been vulnerable. OpenSSL itself uses
these functions when printing out human-readable dumps of ASN.1
data. Therefore applications that print this data could have been
vulnerable if the data is from untrusted sources. OpenSSL command line
applications could also have been vulnerable when they print out ASN.1
data, or if untrusted data is passed as command line arguments. Libssl
is not considered directly vulnerable.
- CVE-2015-3197 (bsc#963415):
The SSLv2 protocol did not block disabled ciphers.
Note that the March 1st 2016 release also references following CVEs
that were fixed by us with CVE-2015-0293 in 2015:
- CVE-2016-0703 (bsc#968051): This issue only affected versions of
OpenSSL prior to March 19th 2015 at which time the code was refactored
to address vulnerability CVE-2015-0293. It would have made the above
'DROWN' attack much easier.
- CVE-2016-0704 (bsc#968053): 'Bleichenbacher oracle in SSLv2'
This issue only affected versions of OpenSSL prior to March 19th
2015 at which time the code was refactored to address vulnerability
CVE-2015-0293. It would have made the above 'DROWN' attack much easier.
- CVE-2015-3194: The signature verification routines will crash with a
NULL pointer dereference if presented with an ASN.1 signature using the
RSA PSS algorithm and absent mask generation function parameter. Since
these routines are used to verify certificate signature algorithms
this can be used to crash any certificate verification operation and
exploited in a DoS attack. Any application which performs certificate
verification is vulnerable including OpenSSL clients and servers which
enable client authentication. (bsc#957815)
- CVE-2015-3195: When presented with a malformed X509_ATTRIBUTE structure OpenSSL would leak
memory. This structure is used by the PKCS#7 and CMS routines so any
application which reads PKCS#7 or CMS data from untrusted sources is affected.
SSL/TLS is not affected. (bsc#957812)
- CVE-2015-3196: If PSK identity hints are received by a multi-threaded client then
the values were wrongly updated in the parent SSL_CTX structure. This could
result in a race condition potentially leading to a double free of the
identify hint data. (bsc#957813)
openssl bugs fixed:
- Avoid running OPENSSL_config twice. This avoids breaking
engine loading. (bsc#952871)
- Ensure that OpenSSL doesn't fall back to the default digest
algorithm (SHA1) in case a non-FIPS algorithm was negotiated while
running in FIPS mode. Instead, OpenSSL will refuse the digest.
(bnc#958501)
- Clear the error after setting non-fips mode (bsc#947104)
- Improve S/390 performance on IBM z196 and z13 (bsc#954256)
- Add support for 'ciphers' providing no encryption (bsc#937085)
libxml2 security issues fixed:
- CVE-2015-8710: Parsing short unclosed HTML comment could cause uninitialized memory access, which allowed remote attackers to read contents from previous HTTP requests depending on the application [bsc#960674]
- CVE-2015-1819 Enforce the reader to run in constant memory [bnc#928193]
- CVE-2015-7941 Fix out of bound read with crafted xml input by stopping parsing on entities boundaries errors [bnc#951734]
- CVE-2015-7942 Fix another variation of overflow in Conditional sections [bnc#951735]
- CVE-2015-8241 Avoid extra processing of MarkupDecl when EOF [bnc#956018]
- CVE-2015-8242 Buffer overead with HTML parser in push mode [bnc#956021]
- CVE-2015-8317 Return if the encoding declaration is broken or encoding conversion failed [bnc#956260]
- CVE-2015-5312 Fix another entity expansion issue [bnc#957105]
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey [bnc#957106]
- CVE-2015-7498 Processes entities after encoding conversion failures [bnc#957107]
- CVE-2015-7499 Add xmlHaltParser() to stop the parser / Detect incoherency on GROW [bnc#957109]
- CVE-2015-8317 Multiple out-of-bound read could lead to denial of service [bnc#956260]
- CVE-2015-8035 DoS when parsing specially crafted XML document if XZ support is enabled [bnc#954429]
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries [bnc#957110]
And other security and non-security updates found in the SUSE Linux Enterprise 12 GA line.
Patchnames
SUSE-SLE-Module-Containers-12-2016-459
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for sles12-docker-image", title: "Title of the patch", }, { category: "description", text: "\nThis update for sles12-docker-image fixes issues with binaries and libraries included in the image\nwhere security updates have been made available in the last weeks.\n\nglibc security issues fixed:\n- CVE-2015-7547: A stack-based buffer overflow in getaddrinfo allowed remote attackers to cause a crash or execute arbitrary code via crafted and timed DNS responses (bsc#961721)\n- CVE-2015-8777: Insufficient checking of LD_POINTER_GUARD environment variable allowed local attackers to bypass the pointer guarding protection of the dynamic loader on set-user-ID and set-group-ID programs (bsc#950944)\n- CVE-2015-8776: Out-of-range time values passed to the strftime function may cause it to crash, leading to a denial of service, or potentially disclosure information (bsc#962736)\n- CVE-2015-8778: Integer overflow in hcreate and hcreate_r could have caused an out-of-bound memory access. leading to application crashes or, potentially, arbitrary code execution (bsc#962737)\n- CVE-2014-9761: A stack overflow (unbounded alloca) could have caused applications which process long strings with the nan function to crash or, potentially, execute arbitrary code. (bsc#962738)\n- CVE-2015-8779: A stack overflow (unbounded alloca) in the catopen function could have caused applications which pass long strings to the catopen function to crash or, potentially execute arbitrary code. (bsc#962739)\n\nglibc bugs fixed:\n- bsc#955647: Resource leak in resolver\n- bsc#956716: Don't do lock elision on an error checking mutex\n- bsc#958315: Reinitialize dl_load_write_lock on fork\n\nopenssl security bugs fixed:\nSecurity issues fixed:\n- CVE-2016-0800 aka the 'DROWN' attack (bsc#968046):\n OpenSSL was vulnerable to a cross-protocol attack that could lead to\n decryption of TLS sessions by using a server supporting SSLv2 and\n EXPORT cipher suites as a Bleichenbacher RSA padding oracle.\n\n This update changes the openssl library to:\n\n * Disable SSLv2 protocol support by default.\n\n This can be overridden by setting the environment variable\n 'OPENSSL_ALLOW_SSL2' or by using SSL_CTX_clear_options using the\n SSL_OP_NO_SSLv2 flag.\n\n Note that various services and clients had already disabled SSL\n protocol 2 by default previously.\n\n * Disable all weak EXPORT ciphers by default. These can be reenabled\n if required by old legacy software using the environment variable\n 'OPENSSL_ALLOW_EXPORT'.\n\n- CVE-2016-0702 aka the 'CacheBleed' attack. (bsc#968050)\n Various changes in the modular exponentation code were added that\n make sure that it is not possible to recover RSA secret keys by\n analyzing cache-bank conflicts on the Intel Sandy-Bridge microarchitecture.\n\n Note that this was only exploitable if the malicious code was running\n on the same hyper threaded Intel Sandy Bridge processor as the victim\n thread performing decryptions.\n\n- CVE-2016-0705 (bnc#968047):\n A double free() bug in the DSA ASN1 parser code was fixed that could\n be abused to facilitate a denial-of-service attack.\n\n- CVE-2016-0797 (bnc#968048):\n The BN_hex2bn() and BN_dec2bn() functions had a bug that could result\n in an attempt to de-reference a NULL pointer leading to crashes.\n This could have security consequences if these functions were ever\n called by user applications with large untrusted hex/decimal data. Also,\n internal usage of these functions in OpenSSL uses data from config files\n or application command line arguments. If user developed applications\n generated config file data based on untrusted data, then this could\n have had security consequences as well.\n\n- CVE-2016-0798 (bnc#968265)\n The SRP user database lookup method SRP_VBASE_get_by_user() had a memory\n leak that attackers could abuse to facility DoS attacks. To mitigate\n the issue, the seed handling in SRP_VBASE_get_by_user() was disabled\n even if the user has configured a seed. Applications are advised to\n migrate to SRP_VBASE_get1_by_user().\n\n- CVE-2016-0799 (bnc#968374)\n On many 64 bit systems, the internal fmtstr() and doapr_outch()\n functions could miscalculate the length of a string and attempt to\n access out-of-bounds memory locations. These problems could have\n enabled attacks where large amounts of untrusted data is passed to\n the BIO_*printf functions. If applications use these functions in\n this way then they could have been vulnerable. OpenSSL itself uses\n these functions when printing out human-readable dumps of ASN.1\n data. Therefore applications that print this data could have been\n vulnerable if the data is from untrusted sources. OpenSSL command line\n applications could also have been vulnerable when they print out ASN.1\n data, or if untrusted data is passed as command line arguments. Libssl\n is not considered directly vulnerable.\n\n- CVE-2015-3197 (bsc#963415):\n The SSLv2 protocol did not block disabled ciphers.\n\nNote that the March 1st 2016 release also references following CVEs\nthat were fixed by us with CVE-2015-0293 in 2015:\n\n- CVE-2016-0703 (bsc#968051): This issue only affected versions of\n OpenSSL prior to March 19th 2015 at which time the code was refactored\n to address vulnerability CVE-2015-0293. It would have made the above\n 'DROWN' attack much easier.\n- CVE-2016-0704 (bsc#968053): 'Bleichenbacher oracle in SSLv2'\n This issue only affected versions of OpenSSL prior to March 19th\n 2015 at which time the code was refactored to address vulnerability\n CVE-2015-0293. It would have made the above 'DROWN' attack much easier.\n\n- CVE-2015-3194: The signature verification routines will crash with a\n NULL pointer dereference if presented with an ASN.1 signature using the\n RSA PSS algorithm and absent mask generation function parameter. Since\n these routines are used to verify certificate signature algorithms\n this can be used to crash any certificate verification operation and\n exploited in a DoS attack. Any application which performs certificate\n verification is vulnerable including OpenSSL clients and servers which\n enable client authentication. (bsc#957815)\n- CVE-2015-3195: When presented with a malformed X509_ATTRIBUTE structure OpenSSL would leak\n memory. This structure is used by the PKCS#7 and CMS routines so any\n application which reads PKCS#7 or CMS data from untrusted sources is affected.\n SSL/TLS is not affected. (bsc#957812)\n- CVE-2015-3196: If PSK identity hints are received by a multi-threaded client then\n the values were wrongly updated in the parent SSL_CTX structure. This could\n result in a race condition potentially leading to a double free of the\n identify hint data. (bsc#957813)\n\nopenssl bugs fixed:\n- Avoid running OPENSSL_config twice. This avoids breaking\n engine loading. (bsc#952871)\n- Ensure that OpenSSL doesn't fall back to the default digest\n algorithm (SHA1) in case a non-FIPS algorithm was negotiated while\n running in FIPS mode. Instead, OpenSSL will refuse the digest.\n (bnc#958501)\n- Clear the error after setting non-fips mode (bsc#947104)\n- Improve S/390 performance on IBM z196 and z13 (bsc#954256)\n- Add support for 'ciphers' providing no encryption (bsc#937085)\n\nlibxml2 security issues fixed:\n- CVE-2015-8710: Parsing short unclosed HTML comment could cause uninitialized memory access, which allowed remote attackers to read contents from previous HTTP requests depending on the application [bsc#960674]\n- CVE-2015-1819 Enforce the reader to run in constant memory [bnc#928193]\n- CVE-2015-7941 Fix out of bound read with crafted xml input by stopping parsing on entities boundaries errors [bnc#951734]\n- CVE-2015-7942 Fix another variation of overflow in Conditional sections [bnc#951735]\n- CVE-2015-8241 Avoid extra processing of MarkupDecl when EOF [bnc#956018]\n- CVE-2015-8242 Buffer overead with HTML parser in push mode [bnc#956021]\n- CVE-2015-8317 Return if the encoding declaration is broken or encoding conversion failed [bnc#956260]\n- CVE-2015-5312 Fix another entity expansion issue [bnc#957105]\n- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey [bnc#957106]\n- CVE-2015-7498 Processes entities after encoding conversion failures [bnc#957107]\n- CVE-2015-7499 Add xmlHaltParser() to stop the parser / Detect incoherency on GROW [bnc#957109]\n- CVE-2015-8317 Multiple out-of-bound read could lead to denial of service [bnc#956260]\n- CVE-2015-8035 DoS when parsing specially crafted XML document if XZ support is enabled [bnc#954429]\n- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries [bnc#957110]\n\nAnd other security and non-security updates found in the SUSE Linux Enterprise 12 GA line.\n", title: "Description of the patch", }, { category: "details", text: "SUSE-SLE-Module-Containers-12-2016-459", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_0786-1.json", }, { category: "self", summary: "URL for SUSE-SU-2016:0786-1", url: "https://www.suse.com/support/update/announcement/2016/suse-su-20160786-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2016:0786-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2016-March/001948.html", }, { category: "self", summary: "SUSE Bug 969591", url: "https://bugzilla.suse.com/969591", }, { category: "self", summary: "SUSE CVE CVE-2014-9761 page", url: "https://www.suse.com/security/cve/CVE-2014-9761/", }, { category: "self", summary: "SUSE CVE CVE-2015-1819 page", url: "https://www.suse.com/security/cve/CVE-2015-1819/", }, { category: "self", summary: "SUSE CVE CVE-2015-3194 page", url: "https://www.suse.com/security/cve/CVE-2015-3194/", }, { category: "self", summary: "SUSE CVE CVE-2015-3195 page", url: "https://www.suse.com/security/cve/CVE-2015-3195/", }, { category: "self", summary: "SUSE CVE CVE-2015-3196 page", url: "https://www.suse.com/security/cve/CVE-2015-3196/", }, { category: "self", summary: "SUSE CVE CVE-2015-3197 page", url: "https://www.suse.com/security/cve/CVE-2015-3197/", }, { category: "self", summary: "SUSE CVE CVE-2015-5312 page", url: "https://www.suse.com/security/cve/CVE-2015-5312/", }, { category: "self", summary: "SUSE CVE CVE-2015-7497 page", url: "https://www.suse.com/security/cve/CVE-2015-7497/", }, { category: "self", summary: "SUSE CVE CVE-2015-7498 page", url: "https://www.suse.com/security/cve/CVE-2015-7498/", }, { category: "self", summary: "SUSE CVE CVE-2015-7499 page", url: "https://www.suse.com/security/cve/CVE-2015-7499/", }, { category: "self", summary: "SUSE CVE CVE-2015-7500 page", url: "https://www.suse.com/security/cve/CVE-2015-7500/", }, { category: "self", summary: "SUSE CVE CVE-2015-7547 page", url: "https://www.suse.com/security/cve/CVE-2015-7547/", }, { category: "self", summary: "SUSE CVE CVE-2015-7941 page", url: "https://www.suse.com/security/cve/CVE-2015-7941/", }, { category: "self", summary: "SUSE CVE CVE-2015-7942 page", url: "https://www.suse.com/security/cve/CVE-2015-7942/", }, { category: "self", summary: "SUSE CVE CVE-2015-8035 page", url: "https://www.suse.com/security/cve/CVE-2015-8035/", }, { category: "self", summary: "SUSE CVE CVE-2015-8241 page", url: "https://www.suse.com/security/cve/CVE-2015-8241/", }, { category: "self", summary: "SUSE CVE CVE-2015-8242 page", url: "https://www.suse.com/security/cve/CVE-2015-8242/", }, { category: "self", summary: "SUSE CVE CVE-2015-8317 page", url: "https://www.suse.com/security/cve/CVE-2015-8317/", }, { category: "self", summary: "SUSE CVE CVE-2015-8710 page", url: "https://www.suse.com/security/cve/CVE-2015-8710/", }, { category: "self", summary: "SUSE CVE CVE-2015-8776 page", url: "https://www.suse.com/security/cve/CVE-2015-8776/", }, { category: "self", summary: "SUSE CVE CVE-2015-8777 page", url: "https://www.suse.com/security/cve/CVE-2015-8777/", }, { category: "self", summary: "SUSE CVE CVE-2015-8778 page", url: "https://www.suse.com/security/cve/CVE-2015-8778/", }, { category: "self", summary: "SUSE CVE CVE-2015-8779 page", url: "https://www.suse.com/security/cve/CVE-2015-8779/", }, { category: "self", summary: "SUSE CVE CVE-2016-0702 page", url: "https://www.suse.com/security/cve/CVE-2016-0702/", }, { category: "self", summary: "SUSE CVE CVE-2016-0703 page", url: "https://www.suse.com/security/cve/CVE-2016-0703/", }, { category: "self", summary: "SUSE CVE CVE-2016-0704 page", url: "https://www.suse.com/security/cve/CVE-2016-0704/", }, { category: "self", summary: "SUSE CVE CVE-2016-0705 page", url: "https://www.suse.com/security/cve/CVE-2016-0705/", }, { category: "self", summary: "SUSE CVE CVE-2016-0797 page", url: "https://www.suse.com/security/cve/CVE-2016-0797/", }, { category: "self", summary: "SUSE CVE CVE-2016-0798 page", url: "https://www.suse.com/security/cve/CVE-2016-0798/", }, { category: "self", summary: "SUSE CVE CVE-2016-0799 page", url: "https://www.suse.com/security/cve/CVE-2016-0799/", }, { category: "self", summary: "SUSE CVE CVE-2016-0800 page", url: "https://www.suse.com/security/cve/CVE-2016-0800/", }, ], title: "Security update for sles12-docker-image", tracking: { current_release_date: "2016-03-16T10:28:25Z", generator: { date: "2016-03-16T10:28:25Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2016:0786-1", initial_release_date: "2016-03-16T10:28:25Z", revision_history: [ { date: "2016-03-16T10:28:25Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "sles12-docker-image-1.1.1-20160307082632.ppc64le", product: { name: "sles12-docker-image-1.1.1-20160307082632.ppc64le", product_id: "sles12-docker-image-1.1.1-20160307082632.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "sles12-docker-image-1.1.1-20160307082632.s390x", product: { name: "sles12-docker-image-1.1.1-20160307082632.s390x", product_id: "sles12-docker-image-1.1.1-20160307082632.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "sles12-docker-image-1.1.1-20160307082632.x86_64", product: { name: "sles12-docker-image-1.1.1-20160307082632.x86_64", product_id: "sles12-docker-image-1.1.1-20160307082632.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Containers 12", product: { name: "SUSE Linux Enterprise Module for Containers 12", product_id: "SUSE Linux Enterprise Module for Containers 12", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-containers:12", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "sles12-docker-image-1.1.1-20160307082632.ppc64le as component of SUSE Linux Enterprise Module for Containers 12", product_id: "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", }, product_reference: "sles12-docker-image-1.1.1-20160307082632.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Containers 12", }, { category: "default_component_of", full_product_name: { name: "sles12-docker-image-1.1.1-20160307082632.s390x as component of SUSE Linux Enterprise Module for Containers 12", product_id: "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", }, product_reference: "sles12-docker-image-1.1.1-20160307082632.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Containers 12", }, { category: "default_component_of", full_product_name: { name: "sles12-docker-image-1.1.1-20160307082632.x86_64 as component of SUSE Linux Enterprise Module for Containers 12", product_id: "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", }, product_reference: "sles12-docker-image-1.1.1-20160307082632.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Containers 12", }, ], }, vulnerabilities: [ { cve: "CVE-2014-9761", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-9761", }, ], notes: [ { category: "general", text: "Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-9761", url: "https://www.suse.com/security/cve/CVE-2014-9761", }, { category: "external", summary: "SUSE Bug 1123874 for CVE-2014-9761", url: "https://bugzilla.suse.com/1123874", }, { category: "external", summary: "SUSE Bug 962738 for CVE-2014-9761", url: "https://bugzilla.suse.com/962738", }, { category: "external", summary: "SUSE Bug 986086 for CVE-2014-9761", url: "https://bugzilla.suse.com/986086", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "critical", }, ], title: "CVE-2014-9761", }, { cve: "CVE-2015-1819", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-1819", }, ], notes: [ { category: "general", text: "The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-1819", url: "https://www.suse.com/security/cve/CVE-2015-1819", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-1819", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 928193 for CVE-2015-1819", url: "https://bugzilla.suse.com/928193", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-1819", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-1819", }, { cve: "CVE-2015-3194", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-3194", }, ], notes: [ { category: "general", text: "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-3194", url: "https://www.suse.com/security/cve/CVE-2015-3194", }, { category: "external", summary: "SUSE Bug 957812 for CVE-2015-3194", url: "https://bugzilla.suse.com/957812", }, { category: "external", summary: "SUSE Bug 957815 for CVE-2015-3194", url: "https://bugzilla.suse.com/957815", }, { category: "external", summary: "SUSE Bug 958768 for CVE-2015-3194", url: "https://bugzilla.suse.com/958768", }, { category: "external", summary: "SUSE Bug 976341 for CVE-2015-3194", url: "https://bugzilla.suse.com/976341", }, { category: "external", summary: "SUSE Bug 990370 for CVE-2015-3194", url: "https://bugzilla.suse.com/990370", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-3194", }, { cve: "CVE-2015-3195", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-3195", }, ], notes: [ { category: "general", text: "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-3195", url: "https://www.suse.com/security/cve/CVE-2015-3195", }, { category: "external", summary: "SUSE Bug 923755 for CVE-2015-3195", url: "https://bugzilla.suse.com/923755", }, { category: "external", summary: "SUSE Bug 957812 for CVE-2015-3195", url: "https://bugzilla.suse.com/957812", }, { category: "external", summary: "SUSE Bug 957815 for CVE-2015-3195", url: "https://bugzilla.suse.com/957815", }, { category: "external", summary: "SUSE Bug 958768 for CVE-2015-3195", url: "https://bugzilla.suse.com/958768", }, { category: "external", summary: "SUSE Bug 963977 for CVE-2015-3195", url: "https://bugzilla.suse.com/963977", }, { category: "external", summary: "SUSE Bug 986238 for CVE-2015-3195", url: "https://bugzilla.suse.com/986238", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-3195", }, { cve: "CVE-2015-3196", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-3196", }, ], notes: [ { category: "general", text: "ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-3196", url: "https://www.suse.com/security/cve/CVE-2015-3196", }, { category: "external", summary: "SUSE Bug 957813 for CVE-2015-3196", url: "https://bugzilla.suse.com/957813", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-3196", }, { cve: "CVE-2015-3197", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-3197", }, ], notes: [ { category: "general", text: "ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-3197", url: "https://www.suse.com/security/cve/CVE-2015-3197", }, { category: "external", summary: "SUSE Bug 963410 for CVE-2015-3197", url: "https://bugzilla.suse.com/963410", }, { category: "external", summary: "SUSE Bug 963415 for CVE-2015-3197", url: "https://bugzilla.suse.com/963415", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2015-3197", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968046 for CVE-2015-3197", url: "https://bugzilla.suse.com/968046", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-3197", }, { cve: "CVE-2015-5312", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-5312", }, ], notes: [ { category: "general", text: "The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-5312", url: "https://www.suse.com/security/cve/CVE-2015-5312", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-5312", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 957105 for CVE-2015-5312", url: "https://bugzilla.suse.com/957105", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-5312", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-5312", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2015-5312", }, { cve: "CVE-2015-7497", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7497", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7497", url: "https://www.suse.com/security/cve/CVE-2015-7497", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7497", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 957106 for CVE-2015-7497", url: "https://bugzilla.suse.com/957106", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-7497", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7497", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-7497", }, { cve: "CVE-2015-7498", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7498", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7498", url: "https://www.suse.com/security/cve/CVE-2015-7498", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7498", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 957107 for CVE-2015-7498", url: "https://bugzilla.suse.com/957107", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-7498", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7498", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-7498", }, { cve: "CVE-2015-7499", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7499", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7499", url: "https://www.suse.com/security/cve/CVE-2015-7499", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7499", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 957109 for CVE-2015-7499", url: "https://bugzilla.suse.com/957109", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-7499", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7499", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-7499", }, { cve: "CVE-2015-7500", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7500", }, ], notes: [ { category: "general", text: "The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect entities boundaries and start tags.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7500", url: "https://www.suse.com/security/cve/CVE-2015-7500", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7500", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 957110 for CVE-2015-7500", url: "https://bugzilla.suse.com/957110", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-7500", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7500", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-7500", }, { cve: "CVE-2015-7547", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7547", }, ], notes: [ { category: "general", text: "Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing \"dual A/AAAA DNS queries\" and the libnss_dns.so.2 NSS module.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7547", url: "https://www.suse.com/security/cve/CVE-2015-7547", }, { category: "external", summary: "SUSE Bug 1077097 for CVE-2015-7547", url: "https://bugzilla.suse.com/1077097", }, { category: "external", summary: "SUSE Bug 847227 for CVE-2015-7547", url: "https://bugzilla.suse.com/847227", }, { category: "external", summary: "SUSE Bug 961721 for CVE-2015-7547", url: "https://bugzilla.suse.com/961721", }, { category: "external", summary: "SUSE Bug 967023 for CVE-2015-7547", url: "https://bugzilla.suse.com/967023", }, { category: "external", summary: "SUSE Bug 967061 for CVE-2015-7547", url: "https://bugzilla.suse.com/967061", }, { category: "external", summary: "SUSE Bug 967072 for CVE-2015-7547", url: "https://bugzilla.suse.com/967072", }, { category: "external", summary: "SUSE Bug 967496 for CVE-2015-7547", url: "https://bugzilla.suse.com/967496", }, { category: "external", summary: "SUSE Bug 969216 for CVE-2015-7547", url: "https://bugzilla.suse.com/969216", }, { category: "external", summary: "SUSE Bug 969241 for CVE-2015-7547", url: "https://bugzilla.suse.com/969241", }, { category: "external", summary: "SUSE Bug 969591 for CVE-2015-7547", url: "https://bugzilla.suse.com/969591", }, { category: "external", summary: "SUSE Bug 986086 for CVE-2015-7547", url: "https://bugzilla.suse.com/986086", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2015-7547", }, { cve: "CVE-2015-7941", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7941", }, ], notes: [ { category: "general", text: "libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7941", url: "https://www.suse.com/security/cve/CVE-2015-7941", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7941", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 951734 for CVE-2015-7941", url: "https://bugzilla.suse.com/951734", }, { category: "external", summary: "SUSE Bug 951735 for CVE-2015-7941", url: "https://bugzilla.suse.com/951735", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7941", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-7941", }, { cve: "CVE-2015-7942", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-7942", }, ], notes: [ { category: "general", text: "The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-7942", url: "https://www.suse.com/security/cve/CVE-2015-7942", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-7942", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 951735 for CVE-2015-7942", url: "https://bugzilla.suse.com/951735", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-7942", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-7942", }, { cve: "CVE-2015-8035", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8035", }, ], notes: [ { category: "general", text: "The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8035", url: "https://www.suse.com/security/cve/CVE-2015-8035", }, { category: "external", summary: "SUSE Bug 1088279 for CVE-2015-8035", url: "https://bugzilla.suse.com/1088279", }, { category: "external", summary: "SUSE Bug 1105166 for CVE-2015-8035", url: "https://bugzilla.suse.com/1105166", }, { category: "external", summary: "SUSE Bug 954429 for CVE-2015-8035", url: "https://bugzilla.suse.com/954429", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-8035", }, { cve: "CVE-2015-8241", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8241", }, ], notes: [ { category: "general", text: "The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8241", url: "https://www.suse.com/security/cve/CVE-2015-8241", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-8241", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 956018 for CVE-2015-8241", url: "https://bugzilla.suse.com/956018", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-8241", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-8241", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-8241", }, { cve: "CVE-2015-8242", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8242", }, ], notes: [ { category: "general", text: "The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8242", url: "https://www.suse.com/security/cve/CVE-2015-8242", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-8242", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 956021 for CVE-2015-8242", url: "https://bugzilla.suse.com/956021", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-8242", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-8242", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-8242", }, { cve: "CVE-2015-8317", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8317", }, ], notes: [ { category: "general", text: "The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8317", url: "https://www.suse.com/security/cve/CVE-2015-8317", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-8317", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 956260 for CVE-2015-8317", url: "https://bugzilla.suse.com/956260", }, { category: "external", summary: "SUSE Bug 959469 for CVE-2015-8317", url: "https://bugzilla.suse.com/959469", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-8317", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-8317", }, { cve: "CVE-2015-8710", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8710", }, ], notes: [ { category: "general", text: "The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8710", url: "https://www.suse.com/security/cve/CVE-2015-8710", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2015-8710", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 960674 for CVE-2015-8710", url: "https://bugzilla.suse.com/960674", }, { category: "external", summary: "SUSE Bug 969769 for CVE-2015-8710", url: "https://bugzilla.suse.com/969769", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2015-8710", }, { cve: "CVE-2015-8776", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8776", }, ], notes: [ { category: "general", text: "The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8776", url: "https://www.suse.com/security/cve/CVE-2015-8776", }, { category: "external", summary: "SUSE Bug 1123874 for CVE-2015-8776", url: "https://bugzilla.suse.com/1123874", }, { category: "external", summary: "SUSE Bug 962736 for CVE-2015-8776", url: "https://bugzilla.suse.com/962736", }, { category: "external", summary: "SUSE Bug 986086 for CVE-2015-8776", url: "https://bugzilla.suse.com/986086", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-8776", }, { cve: "CVE-2015-8777", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8777", }, ], notes: [ { category: "general", text: "The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8777", url: "https://www.suse.com/security/cve/CVE-2015-8777", }, { category: "external", summary: "SUSE Bug 1123874 for CVE-2015-8777", url: "https://bugzilla.suse.com/1123874", }, { category: "external", summary: "SUSE Bug 950944 for CVE-2015-8777", url: "https://bugzilla.suse.com/950944", }, { category: "external", summary: "SUSE Bug 962735 for CVE-2015-8777", url: "https://bugzilla.suse.com/962735", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-8777", }, { cve: "CVE-2015-8778", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8778", }, ], notes: [ { category: "general", text: "Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8778", url: "https://www.suse.com/security/cve/CVE-2015-8778", }, { category: "external", summary: "SUSE Bug 1123874 for CVE-2015-8778", url: "https://bugzilla.suse.com/1123874", }, { category: "external", summary: "SUSE Bug 962737 for CVE-2015-8778", url: "https://bugzilla.suse.com/962737", }, { category: "external", summary: "SUSE Bug 986086 for CVE-2015-8778", url: "https://bugzilla.suse.com/986086", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2015-8778", }, { cve: "CVE-2015-8779", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2015-8779", }, ], notes: [ { category: "general", text: "Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2015-8779", url: "https://www.suse.com/security/cve/CVE-2015-8779", }, { category: "external", summary: "SUSE Bug 1123874 for CVE-2015-8779", url: "https://bugzilla.suse.com/1123874", }, { category: "external", summary: "SUSE Bug 962739 for CVE-2015-8779", url: "https://bugzilla.suse.com/962739", }, { category: "external", summary: "SUSE Bug 965453 for CVE-2015-8779", url: "https://bugzilla.suse.com/965453", }, { category: "external", summary: "SUSE Bug 986086 for CVE-2015-8779", url: "https://bugzilla.suse.com/986086", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2015-8779", }, { cve: "CVE-2016-0702", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0702", }, ], notes: [ { category: "general", text: "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0702", url: "https://www.suse.com/security/cve/CVE-2016-0702", }, { category: "external", summary: "SUSE Bug 1007806 for CVE-2016-0702", url: "https://bugzilla.suse.com/1007806", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0702", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968050 for CVE-2016-0702", url: "https://bugzilla.suse.com/968050", }, { category: "external", summary: "SUSE Bug 971238 for CVE-2016-0702", url: "https://bugzilla.suse.com/971238", }, { category: "external", summary: "SUSE Bug 990370 for CVE-2016-0702", url: "https://bugzilla.suse.com/990370", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2016-0702", }, { cve: "CVE-2016-0703", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0703", }, ], notes: [ { category: "general", text: "The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTER-KEY CLEAR-KEY-LENGTH value for an arbitrary cipher, which allows man-in-the-middle attackers to determine the MASTER-KEY value and decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0703", url: "https://www.suse.com/security/cve/CVE-2016-0703", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0703", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968046 for CVE-2016-0703", url: "https://bugzilla.suse.com/968046", }, { category: "external", summary: "SUSE Bug 968051 for CVE-2016-0703", url: "https://bugzilla.suse.com/968051", }, { category: "external", summary: "SUSE Bug 986238 for CVE-2016-0703", url: "https://bugzilla.suse.com/986238", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2016-0703", }, { cve: "CVE-2016-0704", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0704", }, ], notes: [ { category: "general", text: "An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher suites, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0704", url: "https://www.suse.com/security/cve/CVE-2016-0704", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0704", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968053 for CVE-2016-0704", url: "https://bugzilla.suse.com/968053", }, { category: "external", summary: "SUSE Bug 986238 for CVE-2016-0704", url: "https://bugzilla.suse.com/986238", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2016-0704", }, { cve: "CVE-2016-0705", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0705", }, ], notes: [ { category: "general", text: "Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0705", url: "https://www.suse.com/security/cve/CVE-2016-0705", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0705", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968047 for CVE-2016-0705", url: "https://bugzilla.suse.com/968047", }, { category: "external", summary: "SUSE Bug 971238 for CVE-2016-0705", url: "https://bugzilla.suse.com/971238", }, { category: "external", summary: "SUSE Bug 976341 for CVE-2016-0705", url: "https://bugzilla.suse.com/976341", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "critical", }, ], title: "CVE-2016-0705", }, { cve: "CVE-2016-0797", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0797", }, ], notes: [ { category: "general", text: "Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0797", url: "https://www.suse.com/security/cve/CVE-2016-0797", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0797", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968048 for CVE-2016-0797", url: "https://bugzilla.suse.com/968048", }, { category: "external", summary: "SUSE Bug 990370 for CVE-2016-0797", url: "https://bugzilla.suse.com/990370", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2016-0797", }, { cve: "CVE-2016-0798", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0798", }, ], notes: [ { category: "general", text: "Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0798", url: "https://www.suse.com/security/cve/CVE-2016-0798", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0798", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968265 for CVE-2016-0798", url: "https://bugzilla.suse.com/968265", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "important", }, ], title: "CVE-2016-0798", }, { cve: "CVE-2016-0799", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0799", }, ], notes: [ { category: "general", text: "The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impact via a long string, as demonstrated by a large amount of ASN.1 data, a different vulnerability than CVE-2016-2842.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0799", url: "https://www.suse.com/security/cve/CVE-2016-0799", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0799", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968374 for CVE-2016-0799", url: "https://bugzilla.suse.com/968374", }, { category: "external", summary: "SUSE Bug 969517 for CVE-2016-0799", url: "https://bugzilla.suse.com/969517", }, { category: "external", summary: "SUSE Bug 989345 for CVE-2016-0799", url: "https://bugzilla.suse.com/989345", }, { category: "external", summary: "SUSE Bug 990370 for CVE-2016-0799", url: "https://bugzilla.suse.com/990370", }, { category: "external", summary: "SUSE Bug 991722 for CVE-2016-0799", url: "https://bugzilla.suse.com/991722", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "low", }, ], title: "CVE-2016-0799", }, { cve: "CVE-2016-0800", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0800", }, ], notes: [ { category: "general", text: "The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a \"DROWN\" attack.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0800", url: "https://www.suse.com/security/cve/CVE-2016-0800", }, { category: "external", summary: "SUSE Bug 1106871 for CVE-2016-0800", url: "https://bugzilla.suse.com/1106871", }, { category: "external", summary: "SUSE Bug 961377 for CVE-2016-0800", url: "https://bugzilla.suse.com/961377", }, { category: "external", summary: "SUSE Bug 968044 for CVE-2016-0800", url: "https://bugzilla.suse.com/968044", }, { category: "external", summary: "SUSE Bug 968046 for CVE-2016-0800", url: "https://bugzilla.suse.com/968046", }, { category: "external", summary: "SUSE Bug 968888 for CVE-2016-0800", url: "https://bugzilla.suse.com/968888", }, { category: "external", summary: "SUSE Bug 969591 for CVE-2016-0800", url: "https://bugzilla.suse.com/969591", }, { category: "external", summary: "SUSE Bug 979060 for CVE-2016-0800", url: "https://bugzilla.suse.com/979060", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.ppc64le", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.s390x", "SUSE Linux Enterprise Module for Containers 12:sles12-docker-image-1.1.1-20160307082632.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-16T10:28:25Z", details: "moderate", }, ], title: "CVE-2016-0800", }, ], }
cve-2015-7942
Vulnerability from cvelistv5
Published
2015-11-18 16:00
Modified
2024-08-06 08:06
Severity ?
Summary
The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:06:30.993Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980#c8", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "79507", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79507", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756456", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-10-22T00:00:00", descriptions: [ { lang: "en", value: "The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980#c8", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "79507", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79507", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756456", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-7942", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "RHSA-2015:2550", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "https://support.apple.com/HT206167", refsource: "CONFIRM", url: "https://support.apple.com/HT206167", }, { name: "https://support.apple.com/HT206168", refsource: "CONFIRM", url: "https://support.apple.com/HT206168", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=744980#c8", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980#c8", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "79507", refsource: "BID", url: "http://www.securityfocus.com/bid/79507", }, { name: "APPLE-SA-2016-03-21-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", refsource: "HP", url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=756456", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=756456", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { name: "APPLE-SA-2016-03-21-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "https://support.apple.com/HT206169", refsource: "CONFIRM", url: "https://support.apple.com/HT206169", }, { name: "https://support.apple.com/HT206166", refsource: "CONFIRM", url: "https://support.apple.com/HT206166", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-7942", datePublished: "2015-11-18T16:00:00", dateReserved: "2015-10-22T00:00:00", dateUpdated: "2024-08-06T08:06:30.993Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3195
Vulnerability from cvelistv5
Published
2015-12-06 00:00
Modified
2024-08-06 05:39
Severity ?
EPSS score ?
Summary
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:39:31.988Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "RHSA-2016:2056", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2056.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { tags: [ "x_transferred", ], url: "https://support.apple.com/HT206167", }, { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { tags: [ "x_transferred", ], url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { name: "78626", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/78626", }, { name: "RHSA-2015:2616", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2616.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20151203.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html", }, { name: "1034294", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1034294", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10733", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=cc598f321fbac9c04da5766243ed55d55948637d", }, { tags: [ "x_transferred", ], url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { name: "openSUSE-SU-2015:2318", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { name: "openSUSE-SU-2015:2349", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00103.html", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-12-04T00:00:00", descriptions: [ { lang: "en", value: "The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "RHSA-2016:2056", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2056.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { url: "https://support.apple.com/HT206167", }, { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { url: "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { name: "78626", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/78626", }, { name: "RHSA-2015:2616", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2616.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { url: "http://openssl.org/news/secadv/20151203.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html", }, { name: "1034294", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1034294", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10733", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=cc598f321fbac9c04da5766243ed55d55948637d", }, { url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { name: "openSUSE-SU-2015:2318", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { name: "openSUSE-SU-2015:2349", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00103.html", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-3195", datePublished: "2015-12-06T00:00:00", dateReserved: "2015-04-10T00:00:00", dateUpdated: "2024-08-06T05:39:31.988Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0704
Vulnerability from cvelistv5
Published
2016-03-02 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher suites, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:03.525Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "83764", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83764", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { tags: [ "x_transferred", ], url: "https://drownattack.com", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=ae50d8270026edf5b3c7f8aaa0c6677462b33d97", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher suites, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "83764", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83764", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { url: "https://drownattack.com", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=ae50d8270026edf5b3c7f8aaa0c6677462b33d97", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0704", datePublished: "2016-03-02T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:03.525Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7941
Vulnerability from cvelistv5
Published
2015-11-18 16:00
Modified
2024-08-06 08:06
Severity ?
EPSS score ?
Summary
libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:06:31.043Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "74241", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/74241", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-10-22T00:00:00", descriptions: [ { lang: "en", value: "libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "74241", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/74241", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-7941", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "RHSA-2015:2550", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "74241", refsource: "BID", url: "http://www.securityfocus.com/bid/74241", }, { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/10/22/5", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=744980", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=744980", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "USN-2812-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "HPSBGN03537", refsource: "HP", url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "FEDORA-2016-189a7bf68c", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "[oss-security] 20151022 Re: Crafted xml causes out of bound memory access - Libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/10/22/8", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-7941", datePublished: "2015-11-18T16:00:00", dateReserved: "2015-10-22T00:00:00", dateUpdated: "2024-08-06T08:06:31.043Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-1819
Vulnerability from cvelistv5
Published
2015-08-14 18:00
Modified
2024-08-06 04:54
Severity ?
EPSS score ?
Summary
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T04:54:16.300Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "FEDORA-2015-037f844d3e", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172943.html", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "GLSA-201507-08", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201507-08", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "75570", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/75570", }, { name: "FEDORA-2015-c24af963a2", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172710.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "RHSA-2015:1419", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-1419.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-04-14T00:00:00", descriptions: [ { lang: "en", value: "The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "FEDORA-2015-037f844d3e", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172943.html", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "GLSA-201507-08", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201507-08", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "75570", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/75570", }, { name: "FEDORA-2015-c24af963a2", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172710.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "RHSA-2015:1419", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-1419.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-1819", datePublished: "2015-08-14T18:00:00", dateReserved: "2015-02-17T00:00:00", dateUpdated: "2024-08-06T04:54:16.300Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8317
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 08:13
Severity ?
EPSS score ?
Summary
The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:13:32.133Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281930", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-07-18-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206901", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=751603", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=9aa37588ee78a06ca1379a9d9356eab16686099c", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "91826", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/91826", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "APPLE-SA-2016-07-18-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://blog.fuzzing-project.org/28-Libxml2-Several-out-of-bounds-reads.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=709a952110e98621c9b78c4f26462a9d8333102e", }, { name: "77681", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/77681", }, { name: "[oss-security] 20151122 Re: Libxml2: Several out of bounds reads", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/22/3", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "[oss-security] 20151121 Libxml2: Several out of bounds reads", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/21/1", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206905", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206903", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=751631", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206902", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206904", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206899", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281930", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-07-18-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206901", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=751603", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=9aa37588ee78a06ca1379a9d9356eab16686099c", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "91826", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/91826", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "APPLE-SA-2016-07-18-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_MISC", ], url: "https://blog.fuzzing-project.org/28-Libxml2-Several-out-of-bounds-reads.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=709a952110e98621c9b78c4f26462a9d8333102e", }, { name: "77681", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/77681", }, { name: "[oss-security] 20151122 Re: Libxml2: Several out of bounds reads", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/22/3", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "[oss-security] 20151121 Libxml2: Several out of bounds reads", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/21/1", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206905", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206903", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=751631", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206902", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206904", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206899", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-8317", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1281930", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281930", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-07-18-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { name: "https://support.apple.com/HT206901", refsource: "CONFIRM", url: "https://support.apple.com/HT206901", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=751603", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=751603", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=9aa37588ee78a06ca1379a9d9356eab16686099c", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=9aa37588ee78a06ca1379a9d9356eab16686099c", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "91826", refsource: "BID", url: "http://www.securityfocus.com/bid/91826", }, { name: "USN-2834-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "APPLE-SA-2016-07-18-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "https://blog.fuzzing-project.org/28-Libxml2-Several-out-of-bounds-reads.html", refsource: "MISC", url: "https://blog.fuzzing-project.org/28-Libxml2-Several-out-of-bounds-reads.html", }, { name: "HPSBGN03537", refsource: "HP", url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=709a952110e98621c9b78c4f26462a9d8333102e", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=709a952110e98621c9b78c4f26462a9d8333102e", }, { name: "77681", refsource: "BID", url: "http://www.securityfocus.com/bid/77681", }, { name: "[oss-security] 20151122 Re: Libxml2: Several out of bounds reads", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/22/3", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "[oss-security] 20151121 Libxml2: Several out of bounds reads", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/21/1", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "https://support.apple.com/HT206905", refsource: "CONFIRM", url: "https://support.apple.com/HT206905", }, { name: "https://support.apple.com/HT206903", refsource: "CONFIRM", url: "https://support.apple.com/HT206903", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=751631", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=751631", }, { name: "https://support.apple.com/HT206902", refsource: "CONFIRM", url: "https://support.apple.com/HT206902", }, { name: "https://support.apple.com/HT206904", refsource: "CONFIRM", url: "https://support.apple.com/HT206904", }, { name: "https://support.apple.com/HT206899", refsource: "CONFIRM", url: "https://support.apple.com/HT206899", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-8317", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-11-22T00:00:00", dateUpdated: "2024-08-06T08:13:32.133Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3196
Vulnerability from cvelistv5
Published
2015-12-06 00:00
Modified
2024-08-06 05:39
Severity ?
EPSS score ?
Summary
ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:39:31.984Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=3c66a669dfc7b3792f7af0758ea26fe8502ce70c", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { tags: [ "x_transferred", ], url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { name: "78622", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/78622", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20151203.txt", }, { name: "1034294", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1034294", }, { tags: [ "x_transferred", ], url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-12-04T00:00:00", descriptions: [ { lang: "en", value: "ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (race condition and double free) via a crafted ServerKeyExchange message.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=3c66a669dfc7b3792f7af0758ea26fe8502ce70c", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { name: "78622", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/78622", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { url: "http://openssl.org/news/secadv/20151203.txt", }, { name: "1034294", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1034294", }, { url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-3196", datePublished: "2015-12-06T00:00:00", dateReserved: "2015-04-10T00:00:00", dateUpdated: "2024-08-06T05:39:31.984Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0800
Vulnerability from cvelistv5
Published
2016-03-01 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a "DROWN" attack.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:05.111Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10154", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_transferred", ], url: "https://access.redhat.com/security/vulnerabilities/drown", }, { name: "HPSBMU03573", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=146133665209436&w=2", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05307589", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_us", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176765", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { tags: [ "x_transferred", ], url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-openssl-en", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { tags: [ "x_transferred", ], url: "https://security.netapp.com/advisory/ntap-20160301-0001/", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { tags: [ "x_transferred", ], url: "https://ics-cert.us-cert.gov/advisories/ICSA-16-103-03", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05096953", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "VU#583776", tags: [ "third-party-advisory", "x_transferred", ], url: "https://www.kb.cert.org/vuls/id/583776", }, { tags: [ "x_transferred", ], url: "https://drownattack.com", }, { tags: [ "x_transferred", ], url: "https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05143554", }, { name: "83733", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83733", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "RHSA-2016:1519", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1519.html", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10722", }, { tags: [ "x_transferred", ], url: "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-623229.pdf", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { tags: [ "x_transferred", ], url: "http://support.citrix.com/article/CTX208403", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-623229.pdf", }, { tags: [ "x_transferred", ], url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain plaintext RSA data, which makes it easier for remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a \"DROWN\" attack.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10154", }, { url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { url: "https://access.redhat.com/security/vulnerabilities/drown", }, { name: "HPSBMU03573", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=146133665209436&w=2", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05307589", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_us", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176765", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160330-01-openssl-en", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { url: "https://security.netapp.com/advisory/ntap-20160301-0001/", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { url: "https://ics-cert.us-cert.gov/advisories/ICSA-16-103-03", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05096953", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "VU#583776", tags: [ "third-party-advisory", ], url: "https://www.kb.cert.org/vuls/id/583776", }, { url: "https://drownattack.com", }, { url: "https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05143554", }, { name: "83733", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83733", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "RHSA-2016:1519", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1519.html", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10722", }, { url: "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-623229.pdf", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { url: "http://support.citrix.com/article/CTX208403", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-623229.pdf", }, { url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0800", datePublished: "2016-03-01T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:05.111Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7500
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 07:51
Severity ?
EPSS score ?
Summary
The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect entities boundaries and start tags.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T07:51:28.191Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=f1063fdbe7fa66332bbb76874101c2a7b51b519f", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281943", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "79562", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79562", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect entities boundaries and start tags.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=f1063fdbe7fa66332bbb76874101c2a7b51b519f", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281943", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "79562", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79562", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-7500", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-09-29T00:00:00", dateUpdated: "2024-08-06T07:51:28.191Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8710
Vulnerability from cvelistv5
Published
2016-04-11 21:00
Modified
2024-08-06 08:29
Severity ?
EPSS score ?
Summary
The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.
References
| â–Ľ | URL | Tags |
|---|---|---|
| https://hackerone.com/reports/57125#activity-384861 | x_refsource_MISC | |
| https://bugzilla.gnome.org/show_bug.cgi?id=746048 | x_refsource_CONFIRM | |
| http://www.debian.org/security/2015/dsa-3430 | vendor-advisory, x_refsource_DEBIAN | |
| http://www.openwall.com/lists/oss-security/2015/09/13/1 | mailing-list, x_refsource_MLIST | |
| http://rhn.redhat.com/errata/RHSA-2016-1089.html | vendor-advisory, x_refsource_REDHAT | |
| https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c | x_refsource_CONFIRM | |
| http://www.openwall.com/lists/oss-security/2015/04/19/4 | mailing-list, x_refsource_MLIST | |
| http://www.securityfocus.com/bid/79811 | vdb-entry, x_refsource_BID | |
| http://www.openwall.com/lists/oss-security/2015/12/31/7 | mailing-list, x_refsource_MLIST |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:29:20.694Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://hackerone.com/reports/57125#activity-384861", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=746048", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "[oss-security] 20150913 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/09/13/1", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c", }, { name: "[oss-security] 20150419 libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/04/19/4", }, { name: "79811", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79811", }, { name: "[oss-security] 20151231 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/12/31/7", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-04-19T00:00:00", descriptions: [ { lang: "en", value: "The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2016-11-28T20:57:01", orgId: "79363d38-fa19-49d1-9214-5f28da3f3ac5", shortName: "debian", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://hackerone.com/reports/57125#activity-384861", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=746048", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "[oss-security] 20150913 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/09/13/1", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c", }, { name: "[oss-security] 20150419 libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/04/19/4", }, { name: "79811", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79811", }, { name: "[oss-security] 20151231 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/12/31/7", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@debian.org", ID: "CVE-2015-8710", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://hackerone.com/reports/57125#activity-384861", refsource: "MISC", url: "https://hackerone.com/reports/57125#activity-384861", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=746048", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=746048", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "[oss-security] 20150913 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/09/13/1", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c", }, { name: "[oss-security] 20150419 libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/04/19/4", }, { name: "79811", refsource: "BID", url: "http://www.securityfocus.com/bid/79811", }, { name: "[oss-security] 20151231 Re: libxml2 issue: out-of-bounds memory access when parsing an unclosed HTML comment", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/12/31/7", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "79363d38-fa19-49d1-9214-5f28da3f3ac5", assignerShortName: "debian", cveId: "CVE-2015-8710", datePublished: "2016-04-11T21:00:00", dateReserved: "2015-12-31T00:00:00", dateUpdated: "2024-08-06T08:29:20.694Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3197
Vulnerability from cvelistv5
Published
2016-02-15 00:00
Modified
2024-08-06 05:39
Severity ?
EPSS score ?
Summary
ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:39:31.828Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "FEDORA-2016-527018d2ff", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176373.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "1034849", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1034849", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html", }, { tags: [ "x_transferred", ], url: "http://www.openssl.org/news/secadv/20160128.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390893", }, { name: "GLSA-201601-05", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201601-05", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03724en_us", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "VU#257823", tags: [ "third-party-advisory", "x_transferred", ], url: "https://www.kb.cert.org/vuls/id/257823", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html", }, { name: "82237", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/82237", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { name: "FreeBSD-SA-16:11", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:11.openssl.asc", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d81a1600588b726c2bdccda7efad3cc7a87d6245", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-01-28T00:00:00", descriptions: [ { lang: "en", value: "ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the get_client_master_key and get_client_hello functions.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "FEDORA-2016-527018d2ff", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176373.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "1034849", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1034849", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html", }, { url: "http://www.openssl.org/news/secadv/20160128.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390893", }, { name: "GLSA-201601-05", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201601-05", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03724en_us", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "VU#257823", tags: [ "third-party-advisory", ], url: "https://www.kb.cert.org/vuls/id/257823", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html", }, { name: "82237", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/82237", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { name: "FreeBSD-SA-16:11", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:11.openssl.asc", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d81a1600588b726c2bdccda7efad3cc7a87d6245", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-3197", datePublished: "2016-02-15T00:00:00", dateReserved: "2015-04-10T00:00:00", dateUpdated: "2024-08-06T05:39:31.828Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8779
Vulnerability from cvelistv5
Published
2016-04-19 21:00
Modified
2024-08-06 08:29
Severity ?
EPSS score ?
Summary
Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:29:22.111Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "82244", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/82244", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=17905", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-01-19T00:00:00", descriptions: [ { lang: "en", value: "Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-09-05T01:06:06", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "82244", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/82244", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=17905", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2015-8779", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "SUSE-SU-2016:0471", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", refsource: "MLIST", url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "82244", refsource: "BID", url: "http://www.securityfocus.com/bid/82244", }, { name: "DSA-3480", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "https://sourceware.org/bugzilla/show_bug.cgi?id=17905", refsource: "CONFIRM", url: "https://sourceware.org/bugzilla/show_bug.cgi?id=17905", }, { name: "USN-2985-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "FULLDISC", url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Sep/7", }, { name: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", refsource: "MISC", url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-8779", datePublished: "2016-04-19T21:00:00", dateReserved: "2016-01-19T00:00:00", dateUpdated: "2024-08-06T08:29:22.111Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7498
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 07:51
Severity ?
EPSS score ?
Summary
Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T07:51:28.127Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f6b36e22682b7da20d726bce2dcb2f43", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281879", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "79548", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79548", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f6b36e22682b7da20d726bce2dcb2f43", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281879", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "79548", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79548", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-7498", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-09-29T00:00:00", dateUpdated: "2024-08-06T07:51:28.127Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0702
Vulnerability from cvelistv5
Published
2016-03-03 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a "CacheBleed" attack.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:03.570Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { name: "openSUSE-SU-2016:1242", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00018.html", }, { name: "SUSE-SU-2016:1267", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00029.html", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "USN-2914-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:1360", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00055.html", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "DSA-3500", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "SUSE-SU-2016:1290", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00036.html", }, { name: "openSUSE-SU-2016:1273", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00030.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { tags: [ "x_transferred", ], url: "http://cachebleed.info", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=708dc2f1291e104fe4eef810bb8ffc1fae5b19c1", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular exponentiation, which makes it easier for local users to discover RSA keys by running a crafted application on the same Intel Sandy Bridge CPU core as a victim and leveraging cache-bank conflicts, aka a \"CacheBleed\" attack.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { name: "openSUSE-SU-2016:1242", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00018.html", }, { name: "SUSE-SU-2016:1267", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00029.html", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "USN-2914-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:1360", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00055.html", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "DSA-3500", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "SUSE-SU-2016:1290", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00036.html", }, { name: "openSUSE-SU-2016:1273", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00030.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { url: "http://cachebleed.info", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=708dc2f1291e104fe4eef810bb8ffc1fae5b19c1", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0702", datePublished: "2016-03-03T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:03.570Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8778
Vulnerability from cvelistv5
Published
2016-04-19 21:00
Modified
2024-08-06 08:29
Severity ?
EPSS score ?
Summary
Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:29:21.859Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18240", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "83275", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/83275", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-01-19T00:00:00", descriptions: [ { lang: "en", value: "Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-09-05T01:06:08", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18240", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "83275", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/83275", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2015-8778", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "SUSE-SU-2016:0471", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "https://sourceware.org/bugzilla/show_bug.cgi?id=18240", refsource: "CONFIRM", url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18240", }, { name: "SUSE-SU-2016:0470", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", refsource: "MLIST", url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "DSA-3480", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "83275", refsource: "BID", url: "http://www.securityfocus.com/bid/83275", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "FULLDISC", url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Sep/7", }, { name: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", refsource: "MISC", url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-8778", datePublished: "2016-04-19T21:00:00", dateReserved: "2016-01-19T00:00:00", dateUpdated: "2024-08-06T08:29:21.859Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2014-9761
Vulnerability from cvelistv5
Published
2016-04-19 21:00
Modified
2024-08-06 13:55
Severity ?
EPSS score ?
Summary
Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T13:55:04.586Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83306", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/83306", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=16962", }, { name: "20190612 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2019/Jun/18", }, { name: "20190613 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Jun/14", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-01-19T00:00:00", descriptions: [ { lang: "en", value: "Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-09-05T01:06:06", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83306", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/83306", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=16962", }, { name: "20190612 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2019/Jun/18", }, { name: "20190613 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Jun/14", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2014-9761", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "SUSE-SU-2016:0471", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "openSUSE-SU-2016:0510", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201702-11", }, { name: "SUSE-SU-2016:0472", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", refsource: "MLIST", url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83306", refsource: "BID", url: "http://www.securityfocus.com/bid/83306", }, { name: "USN-2985-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "https://sourceware.org/bugzilla/show_bug.cgi?id=16962", refsource: "CONFIRM", url: "https://sourceware.org/bugzilla/show_bug.cgi?id=16962", }, { name: "20190612 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", refsource: "FULLDISC", url: "http://seclists.org/fulldisclosure/2019/Jun/18", }, { name: "20190613 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Jun/14", }, { name: "http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html", refsource: "MISC", url: "http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "FULLDISC", url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Sep/7", }, { name: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", refsource: "MISC", url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2014-9761", datePublished: "2016-04-19T21:00:00", dateReserved: "2016-01-19T00:00:00", dateUpdated: "2024-08-06T13:55:04.586Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8241
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 08:13
Severity ?
EPSS score ?
Summary
The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:13:32.137Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "77621", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/77621", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=ab2b9a93ff19cedde7befbf2fcc48c6e352b6cbe", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756263", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281936", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-18T00:00:00", descriptions: [ { lang: "en", value: "The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "77621", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/77621", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=ab2b9a93ff19cedde7befbf2fcc48c6e352b6cbe", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756263", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281936", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-8241", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "RHSA-2015:2550", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "77621", refsource: "BID", url: "http://www.securityfocus.com/bid/77621", }, { name: "USN-2834-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=ab2b9a93ff19cedde7befbf2fcc48c6e352b6cbe", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=ab2b9a93ff19cedde7befbf2fcc48c6e352b6cbe", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", refsource: "HP", url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=756263", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=756263", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1281936", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281936", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-8241", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-11-18T00:00:00", dateUpdated: "2024-08-06T08:13:32.137Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0799
Vulnerability from cvelistv5
Published
2016-03-03 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impact via a long string, as demonstrated by a large amount of ASN.1 data, a different vulnerability than CVE-2016-2842.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:05.134Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "83755", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83755", }, { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "RHSA-2016:2073", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2073.html", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05135617", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "USN-2914-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150736", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05126404", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { name: "DSA-3500", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { name: "RHSA-2016:0996", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0996.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=578b956fe741bf8e84055547b1e83c28dd902c73", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "RHSA-2016:0722", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0722.html", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impact via a long string, as demonstrated by a large amount of ASN.1 data, a different vulnerability than CVE-2016-2842.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "83755", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83755", }, { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "RHSA-2016:2073", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2073.html", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05135617", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "USN-2914-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150736", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05126404", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { name: "DSA-3500", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { name: "RHSA-2016:0996", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0996.html", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=578b956fe741bf8e84055547b1e83c28dd902c73", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "RHSA-2016:0722", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0722.html", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0799", datePublished: "2016-03-03T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:05.134Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8777
Vulnerability from cvelistv5
Published
2016-01-20 02:00
Modified
2024-08-06 08:29
Severity ?
EPSS score ?
Summary
The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:29:21.801Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://hmarco.org/bugs/glibc_ptr_mangle_weakness.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "81469", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/81469", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18928", }, { name: "FEDORA-2016-0480defc94", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "1034811", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034811", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-09-05T00:00:00", descriptions: [ { lang: "en", value: "The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { tags: [ "x_refsource_MISC", ], url: "http://hmarco.org/bugs/glibc_ptr_mangle_weakness.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "81469", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/81469", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18928", }, { name: "FEDORA-2016-0480defc94", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, { name: "1034811", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034811", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-8777", datePublished: "2016-01-20T02:00:00", dateReserved: "2016-01-19T00:00:00", dateUpdated: "2024-08-06T08:29:21.801Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3194
Vulnerability from cvelistv5
Published
2015-12-06 00:00
Modified
2024-08-06 05:39
Severity ?
EPSS score ?
Summary
crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:39:31.986Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "78623", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/78623", }, { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=c394a488942387246653833359a5c94b5832674e", }, { name: "openSUSE-SU-2016:1332", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { tags: [ "x_transferred", ], url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { tags: [ "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1288320", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d8541d7e9e63bf5f343af24644046c8d96498c17", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20151203.txt", }, { name: "1034294", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1034294", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { tags: [ "x_transferred", ], url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { name: "openSUSE-SU-2015:2318", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-12-04T00:00:00", descriptions: [ { lang: "en", value: "crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667", }, { name: "78623", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/78623", }, { name: "20151204 Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=c394a488942387246653833359a5c94b5832674e", }, { name: "openSUSE-SU-2016:1332", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html", }, { name: "openSUSE-SU-2015:2288", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html", }, { name: "RHSA-2015:2617", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2617.html", }, { url: "http://www.fortiguard.com/advisory/openssl-advisory-december-2015", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { name: "SSA:2015-349-04", tags: [ "vendor-advisory", ], url: "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { url: "https://bugzilla.redhat.com/show_bug.cgi?id=1288320", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d8541d7e9e63bf5f343af24644046c8d96498c17", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761", }, { name: "HPSBGN03536", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145382583417444&w=2", }, { name: "USN-2830-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2830-1", }, { name: "openSUSE-SU-2015:2289", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html", }, { name: "FEDORA-2015-d87d60b9a9", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { url: "http://openssl.org/news/secadv/20151203.txt", }, { name: "1034294", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1034294", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { url: "http://fortiguard.com/advisory/openssl-advisory-december-2015", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322", }, { name: "DSA-3413", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2015/dsa-3413", }, { name: "openSUSE-SU-2015:2318", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-3194", datePublished: "2015-12-06T00:00:00", dateReserved: "2015-04-10T00:00:00", dateUpdated: "2024-08-06T05:39:31.986Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7547
Vulnerability from cvelistv5
Published
2016-02-18 21:00
Modified
2024-08-06 07:51
Severity ?
EPSS score ?
Summary
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T07:51:28.440Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "1035020", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035020", }, { name: "HPSBGN03582", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=146161017210491&w=2", }, { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "RHSA-2016:0175", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0175.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18665", }, { name: "HPSBGN03551", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145857691004892&w=2", }, { name: "RHSA-2016:0225", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0225.html", }, { name: "FEDORA-2016-0f9e9a34ce", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "USN-2900-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://ubuntu.com/usn/usn-2900-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "RHSA-2016:0277", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0277.html", }, { name: "openSUSE-SU-2016:0511", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security.netapp.com/advisory/ntap-20160217-0002/", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/len_5450", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.tenable.com/security/research/tra-2017-08", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.vmware.com/security/advisories/VMSA-2016-0002.html", }, { name: "HPSBGN03549", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145672440608228&w=2", }, { name: "83265", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/83265", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201602-02", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937", }, { name: "HPSBGN03547", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145596041017029&w=2", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "40339", tags: [ "exploit", "x_refsource_EXPLOIT-DB", "x_transferred", ], url: "https://www.exploit-db.com/exploits/40339/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bto.bluecoat.com/security-advisory/sa114", }, { name: "[libc-alpha] 20160216 [PATCH] CVE-2015-7547 --- glibc getaddrinfo() stack-based buffer overflow", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1293532", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html", }, { name: "RHSA-2016:0176", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0176.html", }, { name: "FEDORA-2016-0480defc94", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html", }, { name: "openSUSE-SU-2016:0512", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01", }, { name: "39454", tags: [ "exploit", "x_refsource_EXPLOIT-DB", "x_transferred", ], url: "https://www.exploit-db.com/exploits/39454/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.citrix.com/article/CTX206991", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en", }, { name: "VU#457759", tags: [ "third-party-advisory", "x_refsource_CERT-VN", "x_transferred", ], url: "https://www.kb.cert.org/vuls/id/457759", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://access.redhat.com/articles/2161461", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10150", }, { name: "HPSBGN03442", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145690841819314&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, { name: "20210901 SEC Consult SA-20210901-0 :: Multiple vulnerabilities in MOXA devices", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2021/Sep/0", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17", }, { name: "20220617 SEC Consult SA-20220615-0 :: Hardcoded Backdoor User and Outdated Software Components in Nexans FTTO GigaSwitch series", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2022/Jun/36", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-07-13T00:00:00", descriptions: [ { lang: "en", value: "Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing \"dual A/AAAA DNS queries\" and the libnss_dns.so.2 NSS module.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-06-20T18:06:34", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "1035020", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035020", }, { name: "HPSBGN03582", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=146161017210491&w=2", }, { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "RHSA-2016:0175", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0175.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18665", }, { name: "HPSBGN03551", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145857691004892&w=2", }, { name: "RHSA-2016:0225", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0225.html", }, { name: "FEDORA-2016-0f9e9a34ce", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "USN-2900-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://ubuntu.com/usn/usn-2900-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "RHSA-2016:0277", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0277.html", }, { name: "openSUSE-SU-2016:0511", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html", }, { tags: [ "x_refsource_MISC", ], url: "https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://security.netapp.com/advisory/ntap-20160217-0002/", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.lenovo.com/us/en/product_security/len_5450", }, { tags: [ "x_refsource_MISC", ], url: "https://www.tenable.com/security/research/tra-2017-08", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.vmware.com/security/advisories/VMSA-2016-0002.html", }, { name: "HPSBGN03549", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145672440608228&w=2", }, { name: "83265", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/83265", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201602-02", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937", }, { name: "HPSBGN03547", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145596041017029&w=2", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "40339", tags: [ "exploit", "x_refsource_EXPLOIT-DB", ], url: "https://www.exploit-db.com/exploits/40339/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bto.bluecoat.com/security-advisory/sa114", }, { name: "[libc-alpha] 20160216 [PATCH] CVE-2015-7547 --- glibc getaddrinfo() stack-based buffer overflow", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1293532", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html", }, { name: "RHSA-2016:0176", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-0176.html", }, { name: "FEDORA-2016-0480defc94", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html", }, { name: "openSUSE-SU-2016:0512", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { tags: [ "x_refsource_MISC", ], url: "https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01", }, { name: "39454", tags: [ "exploit", "x_refsource_EXPLOIT-DB", ], url: "https://www.exploit-db.com/exploits/39454/", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.citrix.com/article/CTX206991", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en", }, { name: "VU#457759", tags: [ "third-party-advisory", "x_refsource_CERT-VN", ], url: "https://www.kb.cert.org/vuls/id/457759", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://access.redhat.com/articles/2161461", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10150", }, { name: "HPSBGN03442", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145690841819314&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2019/Sep/7", }, { name: "20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Sep/7", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html", }, { name: "20210901 SEC Consult SA-20210901-0 :: Multiple vulnerabilities in MOXA devices", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2021/Sep/0", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html", }, { tags: [ "x_refsource_MISC", ], url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17", }, { name: "20220617 SEC Consult SA-20220615-0 :: Hardcoded Backdoor User and Outdated Software Components in Nexans FTTO GigaSwitch series", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2022/Jun/36", }, { tags: [ "x_refsource_MISC", ], url: "http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-7547", datePublished: "2016-02-18T21:00:00", dateReserved: "2015-09-29T00:00:00", dateUpdated: "2024-08-06T07:51:28.440Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0705
Vulnerability from cvelistv5
Published
2016-03-03 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:04.546Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { tags: [ "x_transferred", ], url: "http://source.android.com/security/bulletin/2016-05-01.html", }, { name: "RHSA-2018:2713", tags: [ "vendor-advisory", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:2713", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=6c88c71b4e4825c7bc0489306d062d017634eb88", }, { name: "openSUSE-SU-2016:1332", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05135617", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "RHSA-2018:2575", tags: [ "vendor-advisory", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:2575", }, { name: "USN-2914-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150736", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05126404", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "RHSA-2018:2568", tags: [ "vendor-advisory", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:2568", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { name: "DSA-3500", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { name: "83754", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83754", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "FEDORA-2016-2802690366", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085", }, { url: "http://source.android.com/security/bulletin/2016-05-01.html", }, { name: "RHSA-2018:2713", tags: [ "vendor-advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:2713", }, { name: "FEDORA-2016-e6807b3394", tags: [ "vendor-advisory", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html", }, { name: "HPSBMU03575", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=146108058503441&w=2", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=6c88c71b4e4825c7bc0489306d062d017634eb88", }, { name: "openSUSE-SU-2016:1332", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05135617", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "HPSBGN03569", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145983526810210&w=2", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "RHSA-2018:2575", tags: [ "vendor-advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:2575", }, { name: "USN-2914-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150736", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05126404", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "RHSA-2018:2568", tags: [ "vendor-advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:2568", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { name: "DSA-3500", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { name: "83754", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83754", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0705", datePublished: "2016-03-03T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:04.546Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8242
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 08:13
Severity ?
EPSS score ?
Summary
The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:13:31.676Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=8fb4a770075628d6441fb17a1e435100e2f3b1a2", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281950", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756372", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "77681", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/77681", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-18T00:00:00", descriptions: [ { lang: "en", value: "The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=8fb4a770075628d6441fb17a1e435100e2f3b1a2", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281950", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=756372", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "77681", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/77681", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-8242", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "RHSA-2015:2550", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "[oss-security] 20151118 Buffer overflow in libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/17/5", }, { name: "https://support.apple.com/HT206167", refsource: "CONFIRM", url: "https://support.apple.com/HT206167", }, { name: "https://support.apple.com/HT206168", refsource: "CONFIRM", url: "https://support.apple.com/HT206168", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=8fb4a770075628d6441fb17a1e435100e2f3b1a2", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=8fb4a770075628d6441fb17a1e435100e2f3b1a2", }, { name: "APPLE-SA-2016-03-21-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1281950", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281950", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "[oss-security] 20151118 Re: Buffer overflow in libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/18/23", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=756372", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=756372", }, { name: "HPSBGN03537", refsource: "HP", url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { name: "77681", refsource: "BID", url: "http://www.securityfocus.com/bid/77681", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "https://support.apple.com/HT206169", refsource: "CONFIRM", url: "https://support.apple.com/HT206169", }, { name: "https://support.apple.com/HT206166", refsource: "CONFIRM", url: "https://support.apple.com/HT206166", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-8242", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-11-18T00:00:00", dateUpdated: "2024-08-06T08:13:31.676Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8776
Vulnerability from cvelistv5
Published
2016-04-19 21:00
Modified
2024-08-06 08:29
Severity ?
EPSS score ?
Summary
The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:29:21.646Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83277", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/83277", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18985", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-01-19T00:00:00", descriptions: [ { lang: "en", value: "The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "SUSE-SU-2016:0471", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83277", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/83277", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18985", }, { name: "DSA-3480", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2985-1", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2015-8776", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "SUSE-SU-2016:0471", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html", }, { name: "FEDORA-2016-68abc0be35", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184626.html", }, { name: "RHSA-2017:1916", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2017:1916", }, { name: "DSA-3481", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3481", }, { name: "openSUSE-SU-2016:0510", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html", }, { name: "SUSE-SU-2016:0470", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", }, { name: "RHSA-2017:0680", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2017-0680.html", }, { name: "USN-2985-2", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-2", }, { name: "[oss-security] 20160119 Re: CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/20/1", }, { name: "GLSA-201702-11", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201702-11", }, { name: "GLSA-201602-02", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201602-02", }, { name: "SUSE-SU-2016:0472", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html", }, { name: "SUSE-SU-2016:0473", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html", }, { name: "[libc-alpha] 20160219 The GNU C Library version 2.23 is now available", refsource: "MLIST", url: "https://www.sourceware.org/ml/libc-alpha/2016-02/msg00502.html", }, { name: "[oss-security] 20160119 CVE assignment request for security bugs fixed in glibc 2.23", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/01/19/11", }, { name: "83277", refsource: "BID", url: "http://www.securityfocus.com/bid/83277", }, { name: "https://sourceware.org/bugzilla/show_bug.cgi?id=18985", refsource: "CONFIRM", url: "https://sourceware.org/bugzilla/show_bug.cgi?id=18985", }, { name: "DSA-3480", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3480", }, { name: "USN-2985-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2985-1", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-8776", datePublished: "2016-04-19T21:00:00", dateReserved: "2016-01-19T00:00:00", dateUpdated: "2024-08-06T08:29:21.646Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0703
Vulnerability from cvelistv5
Published
2016-03-02 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTER-KEY CLEAR-KEY-LENGTH value for an arbitrary cipher, which allows man-in-the-middle attackers to determine the MASTER-KEY value and decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:03.398Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "83743", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83743", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { tags: [ "x_transferred", ], url: "https://drownattack.com", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=ae50d8270026edf5b3c7f8aaa0c6677462b33d97", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTER-KEY CLEAR-KEY-LENGTH value for an arbitrary cipher, which allows man-in-the-middle attackers to determine the MASTER-KEY value and decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, a related issue to CVE-2016-0800.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html", }, { name: "83743", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83743", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { url: "https://drownattack.com", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=ae50d8270026edf5b3c7f8aaa0c6677462b33d97", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://www.arista.com/en/support/advisories-notices/security-advisories/1260-security-advisory-18", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0703", datePublished: "2016-03-02T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:03.398Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-5312
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 06:41
Severity ?
EPSS score ?
Summary
The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T06:41:09.539Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=69030714cde66d525a8884bda01b9e8f0abf8e1e", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1276693", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, { name: "79536", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79536", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=69030714cde66d525a8884bda01b9e8f0abf8e1e", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1276693", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, { name: "79536", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79536", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-5312", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-07-01T00:00:00", dateUpdated: "2024-08-06T06:41:09.539Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7497
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 07:51
Severity ?
EPSS score ?
Summary
Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T07:51:28.144Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281862", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "79508", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79508", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=6360a31a84efe69d155ed96306b9a931a40beab9", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281862", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "79508", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79508", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=6360a31a84efe69d155ed96306b9a931a40beab9", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-7497", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-09-29T00:00:00", dateUpdated: "2024-08-06T07:51:28.144Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-7499
Vulnerability from cvelistv5
Published
2015-12-15 21:00
Modified
2024-08-06 07:51
Severity ?
EPSS score ?
Summary
Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T07:51:27.969Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=35bcb1d758ed70aa7b257c9c3b3ff55e54e3d0da", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=28cd9cb747a94483f4aea7f0968d202c20bb4cfc", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281925", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "79509", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/79509", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-20T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "RHSA-2015:2550", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2550.html", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=35bcb1d758ed70aa7b257c9c3b3ff55e54e3d0da", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=28cd9cb747a94483f4aea7f0968d202c20bb4cfc", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "USN-2834-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2834-1", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "RHSA-2015:2549", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2015-2549.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1281925", }, { name: "HPSBGN03537", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://marc.info/?l=bugtraq&m=145382616617563&w=2", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944172", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "79509", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/79509", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2015-7499", datePublished: "2015-12-15T21:00:00", dateReserved: "2015-09-29T00:00:00", dateUpdated: "2024-08-06T07:51:27.969Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0797
Vulnerability from cvelistv5
Published
2016-03-03 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:05.030Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "83763", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83763", }, { tags: [ "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10156", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", "x_transferred", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "USN-2914-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=c175308407858afff3fc8c2e5e085d94d12edc7d", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "DSA-3500", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attackers to cause a denial of service (heap memory corruption or NULL pointer dereference) or possibly have unspecified other impact via a long digit string that is mishandled by the (1) BN_dec2bn or (2) BN_hex2bn function, related to crypto/bn/bn.h and crypto/bn/bn_print.c.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "83763", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83763", }, { url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10156", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html", }, { name: "openSUSE-SU-2016:1239", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "openSUSE-SU-2016:0640", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html", }, { name: "HPSBGN03563", tags: [ "vendor-advisory", ], url: "http://marc.info/?l=bugtraq&m=145889460330120&w=2", }, { name: "USN-2914-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { name: "SUSE-SU-2016:1057", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html", }, { name: "openSUSE-SU-2016:1566", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { name: "openSUSE-SU-2016:1241", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html", }, { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=c175308407858afff3fc8c2e5e085d94d12edc7d", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "openSUSE-SU-2016:0720", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722", }, { name: "SUSE-SU-2016:0624", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html", }, { name: "DSA-3500", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { name: "SUSE-SU-2016:0631", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0678", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { name: "SUSE-SU-2016:0641", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html", }, { url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05052990", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0797", datePublished: "2016-03-03T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:05.030Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8035
Vulnerability from cvelistv5
Published
2015-11-18 16:00
Modified
2024-08-06 08:06
Severity ?
EPSS score ?
Summary
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:06:31.812Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "[oss-security] 20151102 CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/02/2", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "[oss-security] 20151102 Re: CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/02/4", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { name: "[oss-security] 20151103 Re: CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2015/11/03/1", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "77390", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/77390", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=757466", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2015-11-02T00:00:00", descriptions: [ { lang: "en", value: "The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-13T09:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2015/dsa-3430", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "[oss-security] 20151102 CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/02/2", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "RHSA-2016:1089", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1034243", }, { name: "USN-2812-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "[oss-security] 20151102 Re: CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/02/4", }, { name: "FEDORA-2016-189a7bf68c", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { name: "[oss-security] 20151103 Re: CVE request: DoS in libxml2 if xz is enabled", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2015/11/03/1", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "77390", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/77390", }, { name: "openSUSE-SU-2015:2372", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=757466", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-8035", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "APPLE-SA-2016-03-21-5", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "openSUSE-SU-2016:0106", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html", }, { name: "https://support.apple.com/HT206167", refsource: "CONFIRM", url: "https://support.apple.com/HT206167", }, { name: "https://support.apple.com/HT206168", refsource: "CONFIRM", url: "https://support.apple.com/HT206168", }, { name: "DSA-3430", refsource: "DEBIAN", url: "http://www.debian.org/security/2015/dsa-3430", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017", }, { name: "[oss-security] 20151102 CVE request: DoS in libxml2 if xz is enabled", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/02/2", }, { name: "APPLE-SA-2016-03-21-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "FEDORA-2016-a9ee80b01d", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177381.html", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380", }, { name: "RHSA-2016:1089", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-1089.html", }, { name: "APPLE-SA-2016-03-21-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "1034243", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1034243", }, { name: "USN-2812-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2812-1", }, { name: "[oss-security] 20151102 Re: CVE request: DoS in libxml2 if xz is enabled", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/02/4", }, { name: "FEDORA-2016-189a7bf68c", refsource: "FEDORA", url: "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177341.html", }, { name: "[oss-security] 20151103 Re: CVE request: DoS in libxml2 if xz is enabled", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2015/11/03/1", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "77390", refsource: "BID", url: "http://www.securityfocus.com/bid/77390", }, { name: "openSUSE-SU-2015:2372", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html", }, { name: "APPLE-SA-2016-03-21-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "https://support.apple.com/HT206169", refsource: "CONFIRM", url: "https://support.apple.com/HT206169", }, { name: "https://support.apple.com/HT206166", refsource: "CONFIRM", url: "https://support.apple.com/HT206166", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=757466", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=757466", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-8035", datePublished: "2015-11-18T16:00:00", dateReserved: "2015-11-02T00:00:00", dateUpdated: "2024-08-06T08:06:31.812Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-0798
Vulnerability from cvelistv5
Published
2016-03-03 00:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:05.078Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=259b664f950c2ba66fbf4b0fe5281327904ead21", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "USN-2914-1", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { tags: [ "x_transferred", ], url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { tags: [ "x_transferred", ], url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", "x_transferred", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "83705", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/83705", }, { name: "DSA-3500", tags: [ "vendor-advisory", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { tags: [ "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { tags: [ "x_transferred", ], url: "https://www.openssl.org/news/secadv/20160301.txt", }, { tags: [ "x_transferred", ], url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/201603-15", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", "x_transferred", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { tags: [ "x_transferred", ], url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { tags: [ "x_transferred", ], url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-01T00:00:00", descriptions: [ { lang: "en", value: "Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory consumption) by providing an invalid username in a connection attempt, related to apps/s_server.c and crypto/srp/srp_vfy.c.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-12-13T00:00:00", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { url: "https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=259b664f950c2ba66fbf4b0fe5281327904ead21", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", }, { name: "openSUSE-SU-2016:0638", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html", }, { name: "FreeBSD-SA-16:12", tags: [ "vendor-advisory", ], url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc", }, { name: "SUSE-SU-2016:0621", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html", }, { name: "USN-2914-1", tags: [ "vendor-advisory", ], url: "http://www.ubuntu.com/usn/USN-2914-1", }, { url: "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html", }, { url: "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168", }, { url: "http://openssl.org/news/secadv/20160301.txt", }, { name: "20160302 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016", tags: [ "vendor-advisory", ], url: "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl", }, { name: "83705", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/83705", }, { name: "DSA-3500", tags: [ "vendor-advisory", ], url: "http://www.debian.org/security/2016/dsa-3500", }, { url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us", }, { url: "https://www.openssl.org/news/secadv/20160301.txt", }, { url: "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", }, { name: "91787", tags: [ "vdb-entry", ], url: "http://www.securityfocus.com/bid/91787", }, { name: "SUSE-SU-2016:0617", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html", }, { name: "GLSA-201603-15", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/201603-15", }, { name: "openSUSE-SU-2016:0628", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html", }, { name: "1035133", tags: [ "vdb-entry", ], url: "http://www.securitytracker.com/id/1035133", }, { name: "SUSE-SU-2016:0620", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html", }, { name: "openSUSE-SU-2016:0637", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html", }, { name: "openSUSE-SU-2016:0627", tags: [ "vendor-advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00005.html", }, { url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759", }, { url: "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0798", datePublished: "2016-03-03T00:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:05.078Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.