Количество 19
Количество 19
GHSA-7q2f-v729-wjf3
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.
CVE-2015-3195
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.
CVE-2015-3195
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.
CVE-2015-3195
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application.
CVE-2015-3195
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in Open ...
openSUSE-SU-2015:2349-1
Security update for compat-openssl098
SUSE-SU-2015:2342-1
Security update for compat-openssl098
SUSE-SU-2015:2275-1
Security update for openssl
SUSE-SU-2015:2251-1
Security update for compat-openssl097g
ELSA-2015-2616
ELSA-2015-2616: openssl security update (MODERATE)
BDU:2016-01654
Уязвимость реализации ASN1_TFLG_COMBINE библиотеки OpenSSL, позволяющая нарушителю получить защищаемую информацию из памяти процесса
openSUSE-SU-2015:2318-1
Security update for libressl
openSUSE-SU-2015:2289-1
Security update for openssl
SUSE-SU-2015:2253-1
Security update for openssl
SUSE-SU-2015:2237-1
Security update for openssl
SUSE-SU-2015:2230-1
Security update for openssl
ELSA-2015-2617
ELSA-2015-2617: openssl security update (MODERATE)
SUSE-SU-2016:0786-1
Security update for sles12-docker-image
openSUSE-SU-2016:0640-1
Security update for libopenssl0_9_8
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-7q2f-v729-wjf3 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. | CVSS3: 5.3 | 2% Низкий | около 3 лет назад |
 | CVE-2015-3195 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. | CVSS3: 5.3 | 2% Низкий | больше 9 лет назад |
 | CVE-2015-3195 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. | CVSS3: 5.3 | 2% Низкий | больше 9 лет назад |
 | CVE-2015-3195 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to obtain sensitive information from process memory by triggering a decoding failure in a PKCS#7 or CMS application. | CVSS3: 5.3 | 2% Низкий | больше 9 лет назад |
| CVE-2015-3195 The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in Open ... | CVSS3: 5.3 | 2% Низкий | больше 9 лет назад |
 | openSUSE-SU-2015:2349-1 Security update for compat-openssl098 | 2% Низкий | больше 9 лет назад | |
| SUSE-SU-2015:2342-1 Security update for compat-openssl098 | 2% Низкий | больше 9 лет назад | |
| SUSE-SU-2015:2275-1 Security update for openssl | 2% Низкий | больше 9 лет назад | |
| SUSE-SU-2015:2251-1 Security update for compat-openssl097g | 2% Низкий | больше 9 лет назад | |
| ELSA-2015-2616 ELSA-2015-2616: openssl security update (MODERATE) | больше 9 лет назад | ||
 | BDU:2016-01654 Уязвимость реализации ASN1_TFLG_COMBINE библиотеки OpenSSL, позволяющая нарушителю получить защищаемую информацию из памяти процесса | CVSS2: 5 | 2% Низкий | больше 9 лет назад |
| openSUSE-SU-2015:2318-1 Security update for libressl | больше 9 лет назад | ||
| openSUSE-SU-2015:2289-1 Security update for openssl | больше 9 лет назад | ||
| SUSE-SU-2015:2253-1 Security update for openssl | больше 9 лет назад | ||
| SUSE-SU-2015:2237-1 Security update for openssl | больше 9 лет назад | ||
| SUSE-SU-2015:2230-1 Security update for openssl | больше 9 лет назад | ||
| ELSA-2015-2617 ELSA-2015-2617: openssl security update (MODERATE) | больше 9 лет назад | ||
| SUSE-SU-2016:0786-1 Security update for sles12-docker-image | больше 9 лет назад | ||
| openSUSE-SU-2016:0640-1 Security update for libopenssl0_9_8 | больше 9 лет назад |
Уязвимостей на страницу