Lucene search

RedhatCVE-2016-0799

HistoryMar 03, 2016 - 8:59 p.m.

CVE-2016-0799

2016-03-0320:59:03

CWE-119

redhat

web.nvd.nist.gov

239

openssl

cve-2016-0799

fmtstr function

denial of service

overflow

out-of-bounds read

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

Confidence

Low

EPSS

0.717

Percentile

98.1%

JSON

The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g improperly calculates string lengths, which allows remote attackers to cause a denial of service (overflow and out-of-bounds read) or possibly have unspecified other impact via a long string, as demonstrated by a large amount of ASN.1 data, a different vulnerability than CVE-2016-2842.

Affected configurations

Nvd

Node

opensslopensslMatch1.0.1

opensslopensslMatch1.0.1beta1

opensslopensslMatch1.0.1beta2

opensslopensslMatch1.0.1beta3

opensslopensslMatch1.0.1a

opensslopensslMatch1.0.1b

opensslopensslMatch1.0.1c

opensslopensslMatch1.0.1d

opensslopensslMatch1.0.1e

opensslopensslMatch1.0.1f

opensslopensslMatch1.0.1g

opensslopensslMatch1.0.1h

opensslopensslMatch1.0.1i

opensslopensslMatch1.0.1j

opensslopensslMatch1.0.1k

opensslopensslMatch1.0.1l

opensslopensslMatch1.0.1m

opensslopensslMatch1.0.1n

opensslopensslMatch1.0.1o

opensslopensslMatch1.0.1p

opensslopensslMatch1.0.1q

opensslopensslMatch1.0.1r

opensslopensslMatch1.0.2

opensslopensslMatch1.0.2beta1

opensslopensslMatch1.0.2beta2

opensslopensslMatch1.0.2beta3

opensslopensslMatch1.0.2a

opensslopensslMatch1.0.2b

opensslopensslMatch1.0.2c

opensslopensslMatch1.0.2d

opensslopensslMatch1.0.2e

opensslopensslMatch1.0.2f

Node

pulsesecureclientMatch-android

pulsesecureclientMatch-iphone_os

pulsesecuresteel_belted_radiusMatch-

VendorProductVersionCPE
opensslopenssl1.0.1cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*
opensslopenssl1.0.1cpe:2.3:a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*
opensslopenssl1.0.1cpe:2.3:a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*
opensslopenssl1.0.1cpe:2.3:a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*
opensslopenssl1.0.1acpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*
opensslopenssl1.0.1bcpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*
opensslopenssl1.0.1ccpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*
opensslopenssl1.0.1dcpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*
opensslopenssl1.0.1ecpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*
opensslopenssl1.0.1fcpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
openssl	openssl	1.0.1	cpe:2.3:a:openssl:openssl:1.0.1:::::::*
openssl	openssl	1.0.1	cpe:2.3:a:openssl:openssl:1.0.1:beta1::::::
openssl	openssl	1.0.1	cpe:2.3:a:openssl:openssl:1.0.1:beta2::::::
openssl	openssl	1.0.1	cpe:2.3:a:openssl:openssl:1.0.1:beta3::::::
openssl	openssl	1.0.1a	cpe:2.3:a:openssl:openssl:1.0.1a:::::::*
openssl	openssl	1.0.1b	cpe:2.3:a:openssl:openssl:1.0.1b:::::::*
openssl	openssl	1.0.1c	cpe:2.3:a:openssl:openssl:1.0.1c:::::::*
openssl	openssl	1.0.1d	cpe:2.3:a:openssl:openssl:1.0.1d:::::::*
openssl	openssl	1.0.1e	cpe:2.3:a:openssl:openssl:1.0.1e:::::::*
openssl	openssl	1.0.1f	cpe:2.3:a:openssl:openssl:1.0.1f:::::::*

Rows per page:

1-10 of 351

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

lists.fedoraproject.org/pipermail/package-announce/2016-March/178358.html

lists.fedoraproject.org/pipermail/package-announce/2016-March/178817.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html

lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html

lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00015.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00017.html

marc.info/?l=bugtraq&m=145983526810210&w=2

marc.info/?l=bugtraq&m=146108058503441&w=2

openssl.org/news/secadv/20160301.txt

rhn.redhat.com/errata/RHSA-2016-0722.html

rhn.redhat.com/errata/RHSA-2016-0996.html

rhn.redhat.com/errata/RHSA-2016-2073.html

rhn.redhat.com/errata/RHSA-2016-2957.html

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160302-openssl

www.debian.org/security/2016/dsa-3500

www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/83755

www.securityfocus.com/bid/91787

www.securitytracker.com/id/1035133

www.ubuntu.com/usn/USN-2914-1

cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=578b956fe741bf8e84055547b1e83c28dd902c73

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03741en_us

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068681

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05086877

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05126404

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05135617

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05141441

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150736

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150800

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40168

security.FreeBSD.org/advisories/FreeBSD-SA-16:12.openssl.asc

security.gentoo.org/glsa/201603-15

www.openssl.org/news/secadv/20160301.txt

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

Confidence

Low

EPSS

0.717

Percentile

98.1%

JSON

CVE-2016-0799

Affected configurations

References

Related