CVE-2015-1792

🗓️ 12 Jun 2015 19:59:05Reported by [email protected]Type

The do_free_upto function in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service via vectors that trigger a NULL value of a BIO data structure

Reporter	Title	Published	Views	Family All 254
ALT Linux	Security fix for the ALT Linux 9 package openssl10 version 1.0.1k-alt3	15 Jun 201500:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package openssl1.1 version 1.0.1k-alt3	15 Jun 201500:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 7 package openssl10 version 1.0.1k-alt2.M70P.1	26 Jun 201500:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 7 package openssl10 version 1.0.1k-alt3	15 Jun 201500:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package openssl10 version 1.0.1k-alt3	15 Jun 201500:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect Sterling Connect:Express for UNIX (CVE-2015-4000, CVE-2014-8176, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792)	24 Jul 202022:49	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Security Network Protection	16 Jun 201821:25	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect Informix Genero (CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792 & CVE-2015-4000)	3 Jun 202116:41	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL affect multiple N series products	15 Dec 202118:05	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL affect IBM Storwize V7000 Unified (CVE-2014-8176, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792)	18 Jun 201800:09	–	ibm

NVD

Node

openssl opensslRange≤0.9.8zf

openssl opensslMatch1.0.0

openssl opensslMatch1.0.0beta1

openssl opensslMatch1.0.0beta2

openssl opensslMatch1.0.0beta3

openssl opensslMatch1.0.0beta4

openssl opensslMatch1.0.0beta5

openssl opensslMatch1.0.0a

openssl opensslMatch1.0.0b

openssl opensslMatch1.0.0c

openssl opensslMatch1.0.0d

openssl opensslMatch1.0.0e

openssl opensslMatch1.0.0f

openssl opensslMatch1.0.0g

openssl opensslMatch1.0.0h

openssl opensslMatch1.0.0i

openssl opensslMatch1.0.0j

openssl opensslMatch1.0.0k

openssl opensslMatch1.0.0l

openssl opensslMatch1.0.0m

openssl opensslMatch1.0.0n

openssl opensslMatch1.0.0o

openssl opensslMatch1.0.0p

openssl opensslMatch1.0.0q

openssl opensslMatch1.0.0r

openssl opensslMatch1.0.1

openssl opensslMatch1.0.1beta1

openssl opensslMatch1.0.1beta2

openssl opensslMatch1.0.1beta3

openssl opensslMatch1.0.1a

openssl opensslMatch1.0.1b

openssl opensslMatch1.0.1c

openssl opensslMatch1.0.1d

openssl opensslMatch1.0.1e

openssl opensslMatch1.0.1f

openssl opensslMatch1.0.1g

openssl opensslMatch1.0.1h

openssl opensslMatch1.0.1i

openssl opensslMatch1.0.1j

openssl opensslMatch1.0.1k

openssl opensslMatch1.0.1l

openssl opensslMatch1.0.1m

openssl opensslMatch1.0.2

openssl opensslMatch1.0.2beta1

openssl opensslMatch1.0.2a

Source	Link
lists	www.lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2015-June/160436.html
marc	www.marc.info/
oracle	www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2015-June/160647.html
support	www.support.citrix.com/article/CTX216642
oracle	www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
github	www.github.com/openssl/openssl/commit/cd30f03ac5bf2962f44bd02ae8d88245dff2f12c
lists	www.lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
debian	www.debian.org/security/2015/dsa-3287

17 Jun 2026 00:23Current

7.3High risk

Vulners AI Score7.3

CVSS 25

EPSS0.22476

CWE-399