Lucene search
RedHatRHSA-2015:2616HistoryDec 14, 2015 - 12:00 a.m.
(RHSA-2015:2616) Moderate: openssl security update
2015-12-1400:00:00
access.redhat.com
27
0.023 Low
EPSS
Percentile
89.8%
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)
and Transport Layer Security (TLS v1) protocols, as well as a
full-strength, general purpose cryptography library.
A memory leak vulnerability was found in the way OpenSSL parsed PKCS#7 and
CMS data. A remote attacker could use this flaw to cause an application
that parses PKCS#7 or CMS data from untrusted sources to use an excessive
amount of memory and possibly crash. (CVE-2015-3195)
All openssl users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. For the update to take
effect, all services linked to the OpenSSL library must be restarted, or
the system rebooted.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | x86_64 | openssl-perl | < 0.9.8e-37.el5_11 | openssl-perl-0.9.8e-37.el5_11.x86_64.rpm |
| RedHat | 5 | i386 | openssl | < 0.9.8e-37.el5_11 | openssl-0.9.8e-37.el5_11.i386.rpm |
| RedHat | 5 | s390 | openssl | < 0.9.8e-37.el5_11 | openssl-0.9.8e-37.el5_11.s390.rpm |
| RedHat | 5 | ppc | openssl | < 0.9.8e-37.el5_11 | openssl-0.9.8e-37.el5_11.ppc.rpm |
| RedHat | 5 | s390x | openssl-perl | < 0.9.8e-37.el5_11 | openssl-perl-0.9.8e-37.el5_11.s390x.rpm |
| RedHat | 5 | ppc64 | openssl | < 0.9.8e-37.el5_11 | openssl-0.9.8e-37.el5_11.ppc64.rpm |
| RedHat | 5 | ppc64 | openssl-devel | < 0.9.8e-37.el5_11 | openssl-devel-0.9.8e-37.el5_11.ppc64.rpm |
| RedHat | 5 | ppc | openssl-debuginfo | < 0.9.8e-37.el5_11 | openssl-debuginfo-0.9.8e-37.el5_11.ppc.rpm |
| RedHat | 5 | i386 | openssl-debuginfo | < 0.9.8e-37.el5_11 | openssl-debuginfo-0.9.8e-37.el5_11.i386.rpm |
| RedHat | 5 | x86_64 | openssl | < 0.9.8e-37.el5_11 | openssl-0.9.8e-37.el5_11.x86_64.rpm |
Related
nessus
nessus
SUSE SLED11 / SLES11 Security Update : openssl (SUSE-SU-2015:2275-1)
2015-12-17 00:00:00
RHEL 5 : openssl (RHSA-2015:2616)
2015-12-14 00:00:00
F5 Networks BIG-IP : OpenSSL vulnerability (K12824341)
2016-05-18 00:00:00
openvas
openvas
CentOS Update for openssl CESA-2015:2616 centos5
2015-12-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:2342-1)
2021-06-09 00:00:00
OpenSSL 'X509_ATTRIBUTE' Information Disclosure Vulnerability - Linux
2015-12-23 00:00:00
cve
cve
CVE-2015-3195
2015-12-06 20:59:05
ibm
ibm
debiancve
debiancve
CVE-2015-3195
2015-12-06 20:59:05
debian
debian
[SECURITY] [DLA 358-1] openssl security update
2015-12-03 22:20:02
[SECURITY] [DSA 3413-1] openssl security update
2015-12-04 07:43:46
[SECURITY] [DSA 3413-1] openssl security update
2015-12-04 07:43:46
openssl
openssl
Vulnerability in OpenSSL CVE-2015-3195
2015-12-03 00:00:00
osv
osv
openssl - security update
2015-12-03 00:00:00
openssl - security update
2015-12-04 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:09:10
Denial Of Service (DoS)
2017-02-10 01:19:05
cvelist
cvelist
CVE-2015-3195
2015-12-06 00:00:00
f5
f5
SOL12824341 - OpenSSL vulnerability CVE-2015-3195
2015-12-04 00:00:00
K12824341 : OpenSSL vulnerability CVE-2015-3195
2015-12-04 00:00:00
centos
centos
openssl security update
2015-12-14 23:02:16
openssl security update
2015-12-14 11:00:46
ubuntucve
ubuntucve
CVE-2015-3195
2015-12-03 00:00:00
nvd
nvd
CVE-2015-3195
2015-12-06 20:59:05
prion
prion
Information disclosure
2015-12-06 20:59:00
cloudfoundry
cloudfoundry
USN-2830-1 OpenSSL vulnerability | Cloud Foundry
2016-01-07 00:00:00
aix
aix
Vulnerabilities in OpenSSL impact AIX
2016-01-18 10:47:32
fedora
fedora
[SECURITY] Fedora 23 Update: openssl-1.0.2e-1.fc23
2015-12-06 19:20:38
[SECURITY] Fedora 22 Update: openssl-1.0.1k-13.fc22
2015-12-14 11:54:41
amazon
amazon
Medium: openssl
2015-12-14 10:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:26.openssl
2015-12-06 00:00:00
kaspersky
kaspersky
KLA10798 Multiple vulnerabilities at Oracle VM VirtualBox
2016-04-19 00:00:00
redhat
redhat
(RHSA-2015:2617) Moderate: openssl security update
2015-12-14 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.1q-alt1
2015-12-17 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.1q-alt1
2015-12-17 00:00:00
Security fix for the ALT Linux 7 package openssl10 version 1.0.1q-alt1
2015-12-17 00:00:00
oraclelinux
oraclelinux
openssl security update
2015-12-14 00:00:00
openssl security update
2016-03-01 00:00:00
openssl security update
2016-05-12 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2015-12-05 13:03:58
freebsd
freebsd
openssl -- multiple vulnerabilities
2015-12-03 00:00:00
slackware
slackware
[slackware-security] openssl
2015-12-16 06:25:41
symantec
symantec
SA105 : OpenSSL Vulnerabilities 3-Dec-2015
2015-12-10 08:00:00
fortinet
fortinet
OpenSSL Advisory - December 2015
2015-12-10 00:00:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products
2015-12-04 17:38:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2015-12-07 00:00:00
archlinux
archlinux
openssl lib32-openssl: multiple issues
2015-12-05 00:00:00
nodejsblog
nodejsblog
December Security Release Summary
2015-12-04 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2016-01-29 00:00:00
suse
suse
Security update for OpenSSL (important)
2016-03-07 18:13:37
Security update for openssl (important)
2016-03-02 23:12:04
Security update for sles12-docker-image (important)
2016-03-16 15:28:52
paloalto
paloalto
OpenSSL Vulnerabilities
2016-08-15 00:00:00