CVE-2016-7052

Опубликовано: 26 сент. 2016

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 5

CVSS3: 7.5

Описание

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.

Релиз	Статус	Примечание
devel	not-affected
esm-infra-legacy/trusty	not-affected
esm-infra/xenial	not-affected
precise	not-affected
trusty	not-affected
trusty/esm	not-affected
upstream	released	1.0.2j
vivid/stable-phone-overlay	not-affected
vivid/ubuntu-core	not-affected
xenial	not-affected

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected]
precise	not-affected
trusty	not-affected
trusty/esm	DNE	trusty was not-affected
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 94%

0.13857

Средний

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2016-7052

CVSS3: 7.5

redhat

около 9 лет назад

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.

CVE-2016-7052

CVSS3: 7.5

nvd

около 9 лет назад

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.

CVE-2016-7052

CVSS3: 7.5

debian

около 9 лет назад

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to ca ...

GHSA-9wm3-5vv7-j93j

CVSS3: 7.5

github

больше 3 лет назад

crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation.

SUSE-SU-2016:2470-2

suse-cvrf

около 9 лет назад

Security update for nodejs4

EPSS

Процентиль: 94%

0.13857

Средний

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2016-7052

Описание

Пакет openssl

Пакет openssl098

Ссылки на источники

Связанные уязвимости