Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-0166HistoryFeb 08, 2013 - 7:55 p.m.
CVE-2013-0166
2013-02-0819:55:00
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.007
Percentile
80.1%
OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCSP servers to cause a denial of service (NULL pointer dereference and application crash) via an invalid key.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | <Ā 1.0.1e-1 | openssl_1.0.1e-1_all.deb |
| Debian | 11 | all | openssl | <Ā 1.0.1e-1 | openssl_1.0.1e-1_all.deb |
| Debian | 999 | all | openssl | <Ā 1.0.1e-1 | openssl_1.0.1e-1_all.deb |
| Debian | 13 | all | openssl | <Ā 1.0.1e-1 | openssl_1.0.1e-1_all.deb |
Related
f5
f5
K14261 : OpenSSL OCSP vulnerability CVE-2013-0166
2014-04-03 00:00:00
SOL14261 - OpenSSL OCSP vulnerability CVE-2013-0166
2013-03-07 00:00:00
prion
prion
Null pointer dereference
2013-02-08 19:55:00
nessus
nessus
F5 Networks BIG-IP : OpenSSL OCSP vulnerability (SOL14261)
2014-10-10 00:00:00
Debian DSA-2621-1 : openssl - several vulnerabilities
2013-02-14 00:00:00
nvd
nvd
CVE-2013-0166
2013-02-08 19:55:00
veracode
veracode
Denial Of Service (DoS) Through Null Pointer Dereference
2017-02-08 05:51:39
ubuntucve
ubuntucve
CVE-2013-0166
2013-02-08 00:00:00
cve
cve
CVE-2013-0166
2013-02-08 19:55:00
openvas
openvas
OpenSSL: OCSP Invalid Key DoS Issue (20130205) - Windows
2021-08-17 00:00:00
OpenSSL: OCSP Invalid Key DoS Issue (20130205) - Linux
2021-08-17 00:00:00
VMware Security Updates for vCenter Server (VMSA-2013-0009)
2014-01-09 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2013-0166
2013-02-05 00:00:00
cvelist
cvelist
CVE-2013-0166
2013-02-08 19:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package openssl10 version 1.0.0k-alt1
2013-02-27 00:00:00
Security fix for the ALT Linux 6 package openssl10 version 1.0.0k-alt1
2013-02-27 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 1.0.0k-alt1
2013-02-27 00:00:00
freebsd
freebsd
FreeBSD -- OpenSSL multiple vulnerabilities
2013-04-02 00:00:00
OpenSSL -- TLS 1.1, 1.2 denial of service
2013-02-05 00:00:00
osv
osv
openssl - several vulnerabilities
2013-02-13 00:00:00
redhat
redhat
(RHSA-2013:0783) Moderate: openssl security update
2013-05-01 17:58:17
(RHSA-2013:0587) Moderate: openssl security update
2013-03-04 00:00:00
(RHSA-2014:0416) Important: rhevm-spice-client security update
2014-04-17 00:00:00
debian
debian
[SECURITY] [DSA 2621-1] openssl security update
2013-02-13 20:07:41
fedora
fedora
[SECURITY] Fedora 18 Update: openssl-1.0.1e-3.fc18
2013-03-02 19:55:52
[SECURITY] Fedora 17 Update: openssl-1.0.0k-1.fc17
2013-03-08 00:02:36
aix
aix
Multiple OpenSSL vulnerabilities
2013-03-15 03:20:11
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:03.openssl
2013-04-02 00:00:00
amazon
amazon
Medium: openssl
2013-03-14 22:04:00
centos
centos
openssl security update
2013-03-04 22:46:45
ibm
ibm
oraclelinux
oraclelinux
openssl security update
2013-03-04 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2016-09-27 00:00:00
slackware
slackware
openssl
2013-02-09 15:03:57
ubuntu
ubuntu
OpenSSL vulnerabilities
2013-02-21 00:00:00
securityvulns
securityvulns
OpenSSL / PolarSSL / GnuTLS security vulnerabilities
2013-03-02 00:00:00
vmware
vmware
VMware vSphere, ESX and ESXi updates to third party libraries
2013-07-31 00:00:00
VMware vSphere, ESX and ESXi updates to third party libraries
2013-07-31 00:00:00
gentoo
gentoo
OpenSSL: Multiple Vulnerabilities
2013-12-03 00:00:00
cert
cert
suse
suse
Security update for compat-openssl097g (important)
2015-03-24 00:05:09
Security update for libopenssl0_9_8 (important)
2016-03-03 14:11:44
lenovo
lenovo
IntelĀ® PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
IntelĀ® PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.007
Percentile
80.1%
Related for DEBIANCVE:CVE-2013-0166