Lucene search

RedhatCVE-2015-5291

HistoryNov 02, 2015 - 7:59 p.m.

CVE-2015-5291

2015-11-0219:59:05

CWE-119

redhat

web.nvd.nist.gov

cve-2015-5291

heap-based buffer overflow

polarssl

arm mbed tls

remote ssl servers

denial of service

client crash

arbitrary code

sni extension

security vulnerability

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

High

EPSS

0.011

Percentile

84.4%

JSON

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a long hostname to the server name indication (SNI) extension, which is not properly handled when creating a ClientHello message. NOTE: this identifier has been SPLIT per ADT3 due to different affected version ranges. See CVE-2015-8036 for the session ticket issue that was introduced in 1.3.0.

Affected configurations

Nvd

Node

armmbed_tlsRange1.3.0–1.3.14

armmbed_tlsRange2.0.0–2.1.2

polarsslpolarsslRange1.0.0–1.2.17

Node

debiandebian_linuxMatch7.0

debiandebian_linuxMatch8.0

Node

fedoraprojectfedoraMatch21

fedoraprojectfedoraMatch22

fedoraprojectfedoraMatch23

opensuseleapMatch42.1

opensuseopensuseMatch13.2

VendorProductVersionCPE
armmbed_tls*cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
polarsslpolarssl*cpe:2.3:a:polarssl:polarssl:*:*:*:*:*:*:*:*
debiandebian_linux7.0cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
debiandebian_linux8.0cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
fedoraprojectfedora21cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
fedoraprojectfedora22cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
fedoraprojectfedora23cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
opensuseleap42.1cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
opensuseopensuse13.2cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
arm	mbed_tls	*	cpe:2.3:a:arm:mbed_tls::::::::
polarssl	polarssl	*	cpe:2.3:a:polarssl:polarssl::::::::
debian	debian_linux	7.0	cpe:2.3:o:debian:debian_linux:7.0:::::::*
debian	debian_linux	8.0	cpe:2.3:o:debian:debian_linux:8.0:::::::*
fedoraproject	fedora	21	cpe:2.3:o:fedoraproject:fedora:21:::::::*
fedoraproject	fedora	22	cpe:2.3:o:fedoraproject:fedora:22:::::::*
fedoraproject	fedora	23	cpe:2.3:o:fedoraproject:fedora:23:::::::*
opensuse	leap	42.1	cpe:2.3:o:opensuse:leap:42.1:::::::*
opensuse	opensuse	13.2	cpe:2.3:o:opensuse:opensuse:13.2:::::::*