ByteOS Network

CVE Vulnerability Details :

CVE-2016-6306

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-26 Sep, 2016 | 00:00

Updated At-06 Aug, 2024 | 01:29

▼CVE Numbering Authority (CNA)

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://www.tenable.com/security/tns-2016-20	N/A
https://access.redhat.com/errata/RHSA-2018:2185	vendor-advisory
https://access.redhat.com/errata/RHSA-2018:2186	vendor-advisory
http://www.securityfocus.com/bid/93153	vdb-entry
http://rhn.redhat.com/errata/RHSA-2016-1940.html	vendor-advisory
https://security.gentoo.org/glsa/201612-16	vendor-advisory
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312	N/A
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us	N/A
http://www.securitytracker.com/id/1036885	vdb-entry
https://www.tenable.com/security/tns-2016-16	N/A
https://www.tenable.com/security/tns-2016-21	N/A
https://bto.bluecoat.com/security-advisory/sa132	N/A
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html	vendor-advisory
https://access.redhat.com/errata/RHSA-2018:2187	vendor-advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448	N/A
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759	N/A
https://kc.mcafee.com/corporate/index?page=content&id=SB10215	N/A
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html	vendor-advisory
http://www.ubuntu.com/usn/USN-3087-1	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html	vendor-advisory
http://www.ubuntu.com/usn/USN-3087-2	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html	vendor-advisory
http://seclists.org/fulldisclosure/2017/Jul/31	mailing-list
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html	vendor-advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03856en_us	N/A
http://www.debian.org/security/2016/dsa-3673	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html	vendor-advisory
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448	N/A
https://support.f5.com/csp/article/K90492697	N/A
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html	vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html	vendor-advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en	N/A
https://www.oracle.com/security-alerts/cpuapr2020.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html	N/A
https://www.oracle.com/security-alerts/cpujul2020.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html	N/A
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	N/A
https://www.oracle.com/security-alerts/cpujan2020.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	N/A
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html	N/A
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html	N/A
http://www-01.ibm.com/support/docview.wss?uid=swg21995039	N/A
https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/	N/A
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html	N/A
https://www.openssl.org/news/secadv/20160922.txt	N/A
https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9	N/A
https://www.oracle.com/security-alerts/cpuoct2020.html	N/A
https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24	N/A
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	N/A

Hyperlink: https://www.tenable.com/security/tns-2016-20

Resource: N/A

Hyperlink: https://access.redhat.com/errata/RHSA-2018:2185

Resource:

vendor-advisory

Hyperlink: https://access.redhat.com/errata/RHSA-2018:2186

Resource:

vendor-advisory

Hyperlink: http://www.securityfocus.com/bid/93153

Resource:

vdb-entry

Hyperlink: http://rhn.redhat.com/errata/RHSA-2016-1940.html

Resource:

vendor-advisory

Hyperlink: https://security.gentoo.org/glsa/201612-16

Resource:

vendor-advisory

Hyperlink: https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312

Resource: N/A

Hyperlink: https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us

Resource: N/A

Hyperlink: http://www.securitytracker.com/id/1036885

Resource:

vdb-entry

Hyperlink: https://www.tenable.com/security/tns-2016-16

Resource: N/A

Hyperlink: https://www.tenable.com/security/tns-2016-21

Resource: N/A

Hyperlink: https://bto.bluecoat.com/security-advisory/sa132

Resource: N/A

Hyperlink: https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html

Resource:

vendor-advisory

Hyperlink: https://access.redhat.com/errata/RHSA-2018:2187

Resource:

vendor-advisory

Hyperlink: https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448

Resource: N/A

Hyperlink: http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Resource: N/A

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10215

Resource: N/A

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html

Resource:

vendor-advisory

Hyperlink: http://www.ubuntu.com/usn/USN-3087-1

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html

Resource:

vendor-advisory

Hyperlink: http://www.ubuntu.com/usn/USN-3087-2

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html

Resource:

vendor-advisory

Hyperlink: http://seclists.org/fulldisclosure/2017/Jul/31

Resource:

mailing-list

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html

Resource:

vendor-advisory

Hyperlink: https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03856en_us

Resource: N/A

Hyperlink: http://www.debian.org/security/2016/dsa-3673

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html

Resource:

vendor-advisory

Hyperlink: https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448

Resource: N/A

Hyperlink: https://support.f5.com/csp/article/K90492697

Resource: N/A

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html

Resource:

vendor-advisory

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html

Resource:

vendor-advisory

Hyperlink: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en

Resource: N/A

Hyperlink: https://www.oracle.com/security-alerts/cpuapr2020.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

Resource: N/A

Hyperlink: https://www.oracle.com/security-alerts/cpujul2020.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Resource: N/A

Hyperlink: https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Resource: N/A

Hyperlink: https://www.oracle.com/security-alerts/cpujan2020.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

Resource: N/A

Hyperlink: http://www-01.ibm.com/support/docview.wss?uid=swg21995039

Resource: N/A

Hyperlink: https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/

Resource: N/A

Hyperlink: http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html

Resource: N/A

Hyperlink: https://www.openssl.org/news/secadv/20160922.txt

Resource: N/A

Hyperlink: https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9

Resource: N/A

Hyperlink: https://www.oracle.com/security-alerts/cpuoct2020.html

Resource: N/A

Hyperlink: https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24

Resource: N/A

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Resource: N/A

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.tenable.com/security/tns-2016-20	x_transferred
https://access.redhat.com/errata/RHSA-2018:2185	vendor-advisory x_transferred
https://access.redhat.com/errata/RHSA-2018:2186	vendor-advisory x_transferred
http://www.securityfocus.com/bid/93153	vdb-entry x_transferred
http://rhn.redhat.com/errata/RHSA-2016-1940.html	vendor-advisory x_transferred
https://security.gentoo.org/glsa/201612-16	vendor-advisory x_transferred
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312	x_transferred
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us	x_transferred
http://www.securitytracker.com/id/1036885	vdb-entry x_transferred
https://www.tenable.com/security/tns-2016-16	x_transferred
https://www.tenable.com/security/tns-2016-21	x_transferred
https://bto.bluecoat.com/security-advisory/sa132	x_transferred
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html	vendor-advisory x_transferred
https://access.redhat.com/errata/RHSA-2018:2187	vendor-advisory x_transferred
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448	x_transferred
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759	x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10215	x_transferred
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html	vendor-advisory x_transferred
http://www.ubuntu.com/usn/USN-3087-1	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html	vendor-advisory x_transferred
http://www.ubuntu.com/usn/USN-3087-2	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html	vendor-advisory x_transferred
http://seclists.org/fulldisclosure/2017/Jul/31	mailing-list x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html	vendor-advisory x_transferred
https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03856en_us	x_transferred
http://www.debian.org/security/2016/dsa-3673	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html	vendor-advisory x_transferred
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448	x_transferred
https://support.f5.com/csp/article/K90492697	x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html	vendor-advisory x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html	vendor-advisory x_transferred
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en	x_transferred
https://www.oracle.com/security-alerts/cpuapr2020.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html	x_transferred
https://www.oracle.com/security-alerts/cpujul2020.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html	x_transferred
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	x_transferred
https://www.oracle.com/security-alerts/cpujan2020.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html	x_transferred
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html	x_transferred
http://www-01.ibm.com/support/docview.wss?uid=swg21995039	x_transferred
https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/	x_transferred
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html	x_transferred
https://www.openssl.org/news/secadv/20160922.txt	x_transferred
https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9	x_transferred
https://www.oracle.com/security-alerts/cpuoct2020.html	x_transferred
https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24	x_transferred
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	x_transferred