Lucene search
MitreCVELIST:CVE-2015-2774HistoryApr 07, 2016 - 9:00 p.m.
CVE-2015-2774
2016-04-0721:00:00
mitre
www.cve.org
Erlang/OTP before 18.0-rc1 does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).
References
lists.opensuse.org/opensuse-updates/2016-02/msg00124.html
openwall.com/lists/oss-security/2015/03/27/6
openwall.com/lists/oss-security/2015/03/27/9
www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
www.securityfocus.com/bid/73398
usn.ubuntu.com/3571-1/
web.archive.org/web/20150905124006/www.erlang.org/news/85
www.imperialviolet.org/2014/12/08/poodleagain.html
Related
debiancve
debiancve
CVE-2015-2774
2016-04-07 21:59:00
nvd
nvd
CVE-2015-2774
2016-04-07 21:59:00
prion
prion
Code injection
2016-04-07 21:59:00
ubuntucve
ubuntucve
CVE-2015-2774
2016-04-07 00:00:00
cve
cve
CVE-2015-2774
2016-04-07 21:59:00
CVE-2014-3566
2014-10-15 00:55:02
openvas
openvas
Fedora Update for erlang FEDORA-2015-12970
2015-08-20 00:00:00
Fedora Update for erlang FEDORA-2015-12923
2015-08-20 00:00:00
Mageia: Security Advisory (MGASA-2015-0192)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: erlang-17.4-4.fc22
2015-08-18 05:26:46
[SECURITY] Fedora 21 Update: erlang-17.4-4.fc21
2015-08-18 05:26:54
[SECURITY] Fedora 23 Update: erlang-17.4-5.fc23
2015-09-01 18:41:03
nessus
nessus
Fedora 22 : erlang-17.4-4.fc22 (2015-12923)
2015-08-18 00:00:00
Fedora 23 : erlang (2015-33583e5029)
2016-07-14 00:00:00
Fedora 21 : erlang-17.4-4.fc21 (2015-12970)
2015-08-18 00:00:00
mageia
mageia
Updated erlang packages fix CVE-2015-2774
2015-05-05 19:38:17
Updated ruby-httpclient package enables SSL negotiation
2014-11-26 20:29:06
ibm
ibm
redhat
redhat
(RHSA-2014:1653) Moderate: openssl security update
2014-10-16 00:00:00
(RHSA-2015:1546) Important: node.js security update
2015-08-04 00:00:00
cisco
cisco
SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2014-10-15 18:30:00
centos
centos
openssl security update
2014-10-16 15:21:39
suse
suse
Security update for suseRegister (important)
2015-01-05 21:04:43
seebug
seebug
SSL 3.0 POODLE(CVE-2014-3566)
2017-02-17 00:00:00
cert
cert
POODLE vulnerability in SSL 3.0
2014-10-17 00:00:00
amazon
amazon
Important: openssl
2014-10-14 22:32:00
Important: nss
2014-10-16 22:14:00
veracode
veracode
Information Disclosure
2017-02-07 00:05:45
citrix
citrix
CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw
2014-10-14 04:00:00
f5
f5
K15702 : SSLv3 vulnerability CVE-2014-3566
2015-09-18 00:00:00
cvelist
cvelist
CVE-2014-3566
2014-10-15 00:00:00
osv
osv
lighttpd - security update
2015-07-25 00:00:00
hackerone
hackerone
checkpoint_advisories
checkpoint_advisories
Secure Socket Layer (SSL) Version 3.0 (CVE-2014-3566)
2014-10-15 00:00:00
arista
arista
Security Advisory 0007
2014-10-20 00:00:00
virtuozzo
virtuozzo
Important product update: Virtuozzo PowerPanel RTM Hotfix 3 (7.0.1-415)
2017-09-20 00:00:00
debian
debian
[SECURITY] [DSA 3489-1] lighttpd security update
2016-02-23 18:26:27
[SECURITY] [DLA 282-1] lighttpd security update
2015-07-25 14:30:31