Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-0288

Опубликовано: 19 мар. 2015
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 5

Описание

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.

РелизСтатусПримечание
artful

released

1.0.1f-1ubuntu11
bionic

released

1.0.1f-1ubuntu11
cosmic

released

1.0.1f-1ubuntu11
devel

released

1.0.1f-1ubuntu11
disco

released

1.0.1f-1ubuntu11
esm-infra-legacy/trusty

released

1.0.1f-1ubuntu2.11
esm-infra/bionic

released

1.0.1f-1ubuntu11
esm-infra/xenial

released

1.0.1f-1ubuntu11
lucid

released

0.9.8k-7ubuntu8.27
precise

released

1.0.1-4ubuntu5.25

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
lucid

DNE

precise

ignored

end of life
precise/esm

DNE

precise was needed
trusty

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 90%
0.06047
Низкий

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-0288

redhat
больше 10 лет назад

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.

nvd логотип

CVE-2015-0288

nvd
больше 10 лет назад

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.

debian логотип

CVE-2015-0288

debian
больше 10 лет назад

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL bef ...

github логотип

GHSA-6m24-334v-vm3f

github
больше 3 лет назад

The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.

suse-cvrf логотип

SUSE-SU-2015:0541-1

suse-cvrf
больше 10 лет назад

Security update for openssl

EPSS

Процентиль: 90%
0.06047
Низкий

5 Medium

CVSS2