The TLS stack in Mono before 3.12.1 allows remote attackers to have unspecified impact via vectors related to client-side SSLv2 fallback.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 7.0 | |
mono | lt | 3.12.1 |
www.mono-project.com/news/2015/03/07/mono-tls-vulnerability/
www.openwall.com/lists/oss-security/2015/03/17/9
www.securityfocus.com/bid/73256
www.ubuntu.com/usn/USN-2547-1
bugzilla.redhat.com/show_bug.cgi?id=1202869
github.com/mono/mono/commit/b371da6b2d68b4cdd0f21d6342af6c42794f998b
www.debian.org/security/2015/dsa-3202