EUVD-2015-3326

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2015-3277

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The modnss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring. CVE-2015-3277...

Linux Distros Unpatched Vulnerability : CVE-2015-3278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allo...

RHEL 6 : openldap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openldap: incorrect multi-keyword mode cipherstring parsing CVE-2015-3276 -...

K17321122: Nss compat ossl vulnerability CVE-2015-3278

Security Advisory Description The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors. CVE-2015-3278 Impact There is no impact; F5...

SUSE CVE-2015-3277

The modnss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring...

SUSE CVE-2015-3278

The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...

CVE-2015-3277

The modnss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring...

Unspecified vulnerability in nss_compat_ossl

nsscompatossl is a compatibility conversion program that converts OpenSSL to an NSS cryptographic library. A security vulnerability exists in the cipherstring parsing code in nsscompatossl, which stems from the program failing to match the corresponding cipherstring in multiple keyword patterns. ...

CVE-2015-3278

The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...

Code injection

The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...

CVE-2015-3278

The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impact via unknown vectors...

CVE-2015-3278

CVE-2015-3278 involves the cipherstring parsing code in the NSS compatibility layer, specifically the nss_compat_ossl component, which in multi-keyword mode fails to match the expected cipher set for a given cipher combination. The underlying issue is a mismatch in how cipherstrings are parsed, e...