ByteOS Network

CVE Vulnerability Details :

CVE-2015-0208

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-19 Mar, 2015 | 00:00

Updated At-06 Aug, 2024 | 04:03

▼CVE Numbering Authority (CNA)

The ASN.1 signature-verification implementation in the rsa_item_verify function in crypto/rsa/rsa_ameth.c in OpenSSL 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted RSA PSS parameters to an endpoint that uses the certificate-verification feature.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

References

Hyperlink	Resource
https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=4b22cce3812052fe64fc3f6d58d8cc884e3cb834	N/A
https://kc.mcafee.com/corporate/index?page=content&id=SB10110	N/A
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	N/A
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1202369	N/A
https://bto.bluecoat.com/security-advisory/sa92	N/A
https://www.openssl.org/news/secadv_20150319.txt	N/A
http://www.securityfocus.com/bid/73230	vdb-entry
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	N/A
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	N/A
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	N/A
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory
http://www.securitytracker.com/id/1031929	vdb-entry
https://security.gentoo.org/glsa/201503-11	vendor-advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	N/A

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=4b22cce3812052fe64fc3f6d58d8cc884e3cb834	x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10110	x_transferred
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	x_transferred
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=1202369	x_transferred
https://bto.bluecoat.com/security-advisory/sa92	x_transferred
https://www.openssl.org/news/secadv_20150319.txt	x_transferred
http://www.securityfocus.com/bid/73230	vdb-entry x_transferred
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	x_transferred
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory x_transferred
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_transferred
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html	x_transferred
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory x_transferred
http://www.securitytracker.com/id/1031929	vdb-entry x_transferred
https://security.gentoo.org/glsa/201503-11	vendor-advisory x_transferred
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References