Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-0291HistoryMar 19, 2015 - 10:59 p.m.
CVE-2015-0291
2015-03-1922:59:00
Debian Security Bug Tracker
security-tracker.debian.org
8
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.904 High
EPSS
Percentile
98.8%
The sigalgs implementation in t1_lib.c in OpenSSL 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) by using an invalid signature_algorithms extension in the ClientHello message during a renegotiation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | < 3.0.11-1~deb12u2 | openssl_3.0.11-1~deb12u2_all.deb |
| Debian | 11 | all | openssl | < 1.1.1w-0+deb11u1 | openssl_1.1.1w-0+deb11u1_all.deb |
| Debian | 10 | all | openssl | < 1.1.1n-0+deb10u3 | openssl_1.1.1n-0+deb10u3_all.deb |
| Debian | 999 | all | openssl | < 3.2.1-3 | openssl_3.2.1-3_all.deb |
| Debian | 13 | all | openssl | < 3.2.1-3 | openssl_3.2.1-3_all.deb |
Related
veracode
veracode
Denial Of Service (DoS) Through Null Pointer Dereference
2017-02-10 05:10:42
cve
cve
CVE-2015-0291
2015-03-19 22:59:00
openssl
openssl
Vulnerability in OpenSSL CVE-2015-0291
2015-03-19 00:00:00
checkpoint_advisories
checkpoint_advisories
ubuntucve
ubuntucve
CVE-2015-0291
2015-03-19 00:00:00
prion
prion
Null pointer dereference
2015-03-19 22:59:00
threatpost
threatpost
OpenSSL Patches High Severity DOS Vulnerability
2015-03-19 10:00:59
thn
thn
OpenSSL to Patch Undisclosed High Severity Vulnerability this Thursday
2015-07-06 22:12:00
f5
f5
openvas
openvas
OpenSSL Multiple Vulnerabilities (20150319 - 2) - Windows
2015-11-24 00:00:00
OpenSSL Multiple Vulnerabilities (20150319 - 2) - Linux
2015-11-24 00:00:00
Gentoo Security Advisory GLSA 201503-11
2015-09-29 00:00:00
nessus
nessus
OpenSSL < 1.0.2a Multiple Vulnerabilities
2015-03-19 00:00:00
stunnel < 5.12 OpenSSL Multiple Vulnerabilities
2015-03-25 00:00:00
OpenSSL 1.0.2 < 1.0.2a Multiple Vulnerabilities
2015-03-27 00:00:00
archlinux
archlinux
lib32-openssl: multiple issues
2015-03-19 00:00:00
openssl: multiple issues
2015-03-19 00:00:00
fortinet
fortinet
OpenSSL vulnerabilities - March 2015
2015-03-24 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in SSL affect IBM DataPower Gateways (CVE-2015-0287, CVE-2015-0289, CVE-2015-0292, and CVE-2015-0293)
2021-06-08 22:18:27
Security Bulletin: Vulnerabilities in OpenSSL including ClientHello DoS affect Multiple N series Products
2021-12-15 18:04:22
Security Bulletin: Vulnerabilities in OpenSSL affect IBM SAN b-type Switches
2023-02-28 01:48:51
kaspersky
kaspersky
KLA10479 Multiple vulnerabilities in OpenSSL
2015-03-19 00:00:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL (March 2015) Affecting Cisco Products
2015-03-20 20:20:00
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2015-03-21 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2015-03-19 00:00:00
ics
ics
Rockwell Automation Stratix 5900
2017-05-10 12:00:00
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2015
2015-10-20 00:00:00
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
Oracle Critical Patch Update - January 2016
2016-01-19 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.904 High
EPSS
Percentile
98.8%
Related for DEBIANCVE:CVE-2015-0291