Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-3566

Опубликовано: 15 окт. 2014
Источник: ubuntu
Приоритет: medium
EPSS Критический
CVSS2: 4.3
CVSS3: 3.4

Описание

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

РелизСтатусПримечание
artful

not-affected

2:3.17.1-0ubuntu1
bionic

not-affected

2:3.17.1-0ubuntu1
cosmic

not-affected

2:3.17.1-0ubuntu1
devel

not-affected

2:3.17.1-0ubuntu1
disco

not-affected

2:3.17.1-0ubuntu1
esm-infra-legacy/trusty

not-affected

2:3.17.1-0ubuntu0.14.04.1
esm-infra/bionic

not-affected

2:3.17.1-0ubuntu1
esm-infra/focal

not-affected

2:3.17.1-0ubuntu1
esm-infra/xenial

not-affected

2:3.17.1-0ubuntu1
focal

not-affected

2:3.17.1-0ubuntu1

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [6b34-1.13.6-1ubuntu0.14.04.1]]
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [7u75-2.5.4-1~trusty1]]
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
artful

released

1.0.1f-1ubuntu9
bionic

released

1.0.1f-1ubuntu9
cosmic

released

1.0.1f-1ubuntu9
devel

released

1.0.1f-1ubuntu9
disco

released

1.0.1f-1ubuntu9
esm-infra-legacy/trusty

not-affected

1.0.1f-1ubuntu2.7
esm-infra/bionic

not-affected

1.0.1f-1ubuntu9
esm-infra/focal

not-affected

1.0.1f-1ubuntu9
esm-infra/xenial

not-affected

1.0.1f-1ubuntu9
fips-preview/jammy

released

1.0.1f-1ubuntu9

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

2.6-6.1
bionic

DNE

cosmic

DNE

devel

needs-triage

disco

DNE

esm-apps/focal

not-affected

2.6-6.1
esm-apps/jammy

not-affected

2.6-6.1
esm-apps/xenial

not-affected

2.6-6.1
esm-infra-legacy/trusty

needed

focal

not-affected

2.6-6.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 100%
0.9413
Критический

4.3 Medium

CVSS2

3.4 Low

CVSS3

Связанные уязвимости

redhat логотип

CVE-2014-3566

redhat
почти 11 лет назад

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

nvd логотип

CVE-2014-3566

CVSS3: 3.4
nvd
почти 11 лет назад

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

debian логотип

CVE-2014-3566

CVSS3: 3.4
debian
почти 11 лет назад

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...

suse-cvrf логотип

openSUSE-SU-2017:0980-1

suse-cvrf
больше 8 лет назад

Security update for slrn

suse-cvrf логотип

SUSE-RU-2015:1175-1

suse-cvrf
около 10 лет назад

Recommended update for Package Management Stack

EPSS

Процентиль: 100%
0.9413
Критический

4.3 Medium

CVSS2

3.4 Low

CVSS3

Уязвимость CVE-2014-3566