Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-2109

Опубликовано: 05 мая 2016
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 7.8
CVSS3: 7.5

Описание

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.

РелизСтатусПримечание
artful

released

1.0.2g-1ubuntu5
bionic

released

1.0.2g-1ubuntu5
cosmic

released

1.0.2g-1ubuntu5
devel

released

1.0.2g-1ubuntu5
disco

released

1.0.2g-1ubuntu5
esm-infra-legacy/trusty

not-affected

1.0.1f-1ubuntu2.19
esm-infra/bionic

not-affected

1.0.2g-1ubuntu5
esm-infra/xenial

not-affected

1.0.2g-1ubuntu4.1
precise

released

1.0.1-4ubuntu5.36
precise/esm

not-affected

1.0.1-4ubuntu5.36

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
precise

ignored

end of life
precise/esm

DNE

precise was needed
trusty

ignored

end of standard support
trusty/esm

DNE

trusty was needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 98%
0.57944
Средний

7.8 High

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-2109

CVSS3: 4
redhat
около 9 лет назад

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.

nvd логотип

CVE-2016-2109

CVSS3: 7.5
nvd
около 9 лет назад

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.

debian логотип

CVE-2016-2109

CVSS3: 7.5
debian
около 9 лет назад

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 ...

github логотип

GHSA-mq63-fmfx-8qc3

CVSS3: 7.5
github
около 3 лет назад

The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.

fstec логотип

BDU:2020-02963

CVSS3: 7.5
fstec
около 9 лет назад

Уязвимость функции asn1_d2i_read_bio (crypto/asn1/a_d2i_fp.c) библиотеки OpenSSL, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 98%
0.57944
Средний

7.8 High

CVSS2

7.5 High

CVSS3

Уязвимость CVE-2016-2109