5 matches found
openSUSE Security Update : polarssl (openSUSE-2016-932)
This update for polarssl fixes the following issues : - CVE-2015-8036: A heap-based buffer overflow could have allowed remote attackers to cause a denial of service or possibly execute arbitrary code via a long session ticket name to the session ticket extension boo989694 %NASLMINLEVEL 70300 C...
Mageia: Security Advisory (MGASA-2016-0054)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 3468-1] polarssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3468-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 06, 2016 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3468-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-8036
mbed TLS (formerly PolarSSL) contains heap-based buffer overflow vulnerabilities in multiple tracked CVEs. CVE-2015-5291 impacts the server name indication (SNI) hostname handling in ClientHello, enabling DoS or potential code execution; CVE-2015-8036 affects the session ticket extension in Clien...