Lucene search
Ubuntu.comUB:CVE-2014-3570HistoryJan 08, 2015 - 12:00 a.m.
CVE-2014-3570
2015-01-0800:00:00
ubuntu.com
ubuntu.com
22
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.123 Low
EPSS
Percentile
95.3%
The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p,
and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM
value, which might make it easier for remote attackers to defeat
cryptographic protection mechanisms via unspecified vectors, related to
crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 17.10 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
| ubuntu | 18.04 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
| ubuntu | 18.10 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
| ubuntu | 19.04 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
| ubuntu | 10.04 | noarch | openssl | < 0.9.8k-7ubuntu8.23 | UNKNOWN |
| ubuntu | 12.04 | noarch | openssl | < 1.0.1-4ubuntu5.21 | UNKNOWN |
| ubuntu | 14.04 | noarch | openssl | < 1.0.1f-1ubuntu2.8 | UNKNOWN |
| ubuntu | 14.10 | noarch | openssl | < 1.0.1f-1ubuntu9.1 | UNKNOWN |
| ubuntu | 15.04 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
| ubuntu | 15.10 | noarch | openssl | < 1.0.1f-1ubuntu10 | UNKNOWN |
Related
prion
prion
Design/Logic Flaw
2015-01-09 02:59:00
veracode
veracode
Weak Cryptographic Protection Mechanisms
2017-02-06 07:21:23
Weak Cryptographic Protection Mechanisms
2019-01-15 09:04:11
debiancve
debiancve
CVE-2014-3570
2015-01-09 02:59:00
f5
f5
K16120 : OpenSSL vulnerability CVE-2014-3570
2015-09-18 00:00:00
SOL16120 - OpenSSL vulnerability CVE-2014-3570
2015-02-11 00:00:00
ibm
ibm
cve
cve
CVE-2014-3570
2015-01-09 02:59:00
CVE-2015-0159
2015-03-25 01:59:00
openssl
openssl
Vulnerability in OpenSSL CVE-2014-3570
2015-01-08 00:00:00
oraclelinux
oraclelinux
openssl security update
2015-12-14 00:00:00
openssl security update
2016-05-31 00:00:00
openssl security update
2015-02-26 00:00:00
openvas
openvas
Fedora Update for openssl FEDORA-2015-0512
2015-01-14 00:00:00
Oracle: Security Advisory (ELSA-2015-2616)
2015-12-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0182-1)
2021-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: openssl-1.0.1k-1.fc21
2015-01-13 00:02:20
[SECURITY] Fedora 20 Update: openssl-1.0.1e-41.fc20
2015-01-20 21:05:44
[SECURITY] Fedora 20 Update: openssl-1.0.1e-42.fc20
2015-03-23 07:18:26
nessus
nessus
Fedora 21 : openssl-1.0.1k-1.fc21 (2015-0512)
2015-01-13 00:00:00
Mac OS X : Cisco AnyConnect Secure Mobility Client < 3.1(7021) <= 4.0(48) Multiple Vulnerabilities (FREAK)
2015-03-26 00:00:00
Debian DLA-132-1 : openssl security update (FREAK)
2015-03-26 00:00:00
debian
debian
[SECURITY] [DLA 132-1] openssl security update
2015-01-11 13:16:17
[SECURITY] [DSA 3125-1] openssl security update
2015-01-11 11:05:13
[SECURITY] [DSA 3125-1] openssl security update
2015-01-11 11:05:13
osv
osv
openssl - security update
2015-01-11 00:00:00
openssl - security update
2015-01-11 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2015-01-12 00:00:00
centos
centos
openssl security update
2015-01-20 21:00:39
redhat
redhat
(RHSA-2015:0066) Moderate: openssl security update
2015-01-20 00:00:00
securityvulns
securityvulns
[USN-2459-1] OpenSSL vulnerabilities
2015-01-13 00:00:00
OpenSSL multiple security vulnerabilities
2015-01-13 00:00:00
HP Version Control Repository Manager multiple security vulnerabilities
2015-09-14 00:00:00
aix
aix
Multiple Security vulnerabilities in AIX OpenSSL
2015-02-04 06:24:41
suse
suse
Security update for openssl (important)
2015-01-23 20:05:13
Security update for libressl (important)
2015-07-22 15:08:14
Security update for compat-openssl097g (important)
2015-03-24 00:05:09
altlinux
altlinux
Security fix for the ALT Linux 8 package openssl10 version 1.0.1k-alt1
2015-01-12 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.1k-alt1
2015-01-12 00:00:00
kaspersky
kaspersky
KLA10460 Multiple vulnerabilities in OpenSSL
2015-01-08 00:00:00
slackware
slackware
[slackware-security] openssl
2015-01-09 18:34:39
archlinux
archlinux
openssl: multiple issues
2015-01-09 00:00:00
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2015-01-08 00:00:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products
2015-03-10 16:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:01.openssl
2015-01-14 00:00:00
amazon
amazon
Medium: openssl
2015-01-11 12:36:00
mageia
mageia
Updated openssl packages fix security vulnerabilities
2015-01-11 22:54:28
citrix
citrix
oracle
oracle
Oracle Critical Patch Update - April 2015
2015-04-14 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.123 Low
EPSS
Percentile
95.3%
Related for UB:CVE-2014-3570