Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-3735

Опубликовано: 28 авг. 2017
Источник: ubuntu
Приоритет: low
EPSS Средний
CVSS2: 5
CVSS3: 5.3

Описание

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.

РелизСтатусПримечание
artful

released

1.0.2g-1ubuntu13.2
bionic

released

1.0.2g-1ubuntu14
cosmic

released

1.0.2g-1ubuntu14
devel

released

1.0.2g-1ubuntu14
disco

released

1.0.2g-1ubuntu14
esm-infra-legacy/trusty

not-affected

1.0.1f-1ubuntu2.23
esm-infra/bionic

not-affected

1.0.2g-1ubuntu14
esm-infra/xenial

not-affected

1.0.2g-1ubuntu4.9
precise/esm

not-affected

1.0.1-4ubuntu5.40
trusty

released

1.0.1f-1ubuntu2.23

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needs-triage]
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was needs-triage
upstream

needs-triage

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

1.0.2n-1ubuntu4
cosmic

not-affected

1.0.2n-1ubuntu4
devel

DNE

disco

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

1.0.2n-1ubuntu4
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 97%
0.37446
Средний

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-3735

CVSS3: 5.3
redhat
почти 8 лет назад

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.

nvd логотип

CVE-2017-3735

CVSS3: 5.3
nvd
почти 8 лет назад

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.

debian логотип

CVE-2017-3735

CVSS3: 5.3
debian
почти 8 лет назад

While parsing an IPAddressFamily extension in an X.509 certificate, it ...

suse-cvrf логотип

SUSE-SU-2017:2981-1

suse-cvrf
больше 7 лет назад

Security update for openssl

suse-cvrf логотип

SUSE-SU-2017:2968-1

suse-cvrf
больше 7 лет назад

Security update for openssl1

EPSS

Процентиль: 97%
0.37446
Средний

5 Medium

CVSS2

5.3 Medium

CVSS3