CVE-2015-3194

HIGH

OpenSSL <1.0.1q, <1.0.2e - DoS

Title source: llm

Description

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

Exploits (1)

nomisec WORKING POC 1 stars

by Trinadh465 · poc

https://github.com/Trinadh465/OpenSSL-1_0_1g_CVE-2015-3194

View Code ZIP pw:eip

References (38)

Core 38

Core References

Third Party Advisory vendor-advisory

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl

Mailing List, Third Party Advisory vendor-advisory

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html

Mailing List, Third Party Advisory vendor-advisory

http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.html

Third Party Advisory vendor-advisory

http://rhn.redhat.com/errata/RHSA-2015-2617.html

Third Party Advisory vendor-advisory

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.754583

Mailing List, Third Party Advisory vendor-advisory

http://marc.info/?l=bugtraq&m=145382583417444&w=2

Third Party Advisory vendor-advisory

http://www.ubuntu.com/usn/USN-2830-1

Mailing List, Third Party Advisory vendor-advisory

http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.html

Mailing List, Third Party Advisory vendor-advisory

http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.html

Third Party Advisory, VDB Entry vdb-entry

http://www.securityfocus.com/bid/91787

Third Party Advisory vendor-advisory

http://rhn.redhat.com/errata/RHSA-2016-2957.html

Third Party Advisory, VDB Entry vdb-entry

http://www.securitytracker.com/id/1034294

Mailing List, Third Party Advisory vendor-advisory

http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html

Third Party Advisory vendor-advisory

http://www.debian.org/security/2015/dsa-3413

Mailing List, Third Party Advisory vendor-advisory

http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.html

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Vendor Advisory

https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=d8541d7e9e63bf5f343af24644046c8d96498c17

Vendor Advisory

http://openssl.org/news/secadv/20151203.txt

Third Party Advisory

http://fortiguard.com/advisory/openssl-advisory-december-2015

Third Party Advisory

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Third Party Advisory

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

Third Party Advisory

http://www.fortiguard.com/advisory/openssl-advisory-december-2015

Patch, Vendor Advisory

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Patch, Vendor Advisory

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Patch, Vendor Advisory

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Vendor Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Issue Tracking, Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1288320

Third Party Advisory, VDB Entry vdb-entry

http://www.securityfocus.com/bid/78623

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04944173

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05111017

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131085

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05398322

Third Party Advisory

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40100

Vendor Advisory

https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=c394a488942387246653833359a5c94b5832674e

Scores

CVSS v3 7.5

EPSS 0.5190

EPSS Percentile 97.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (30)

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 15.04

canonical/ubuntu_linux 15.10

debian/debian_linux 7.0

debian/debian_linux 8.0

nodejs/node.js 0.10.0 - 0.10.41

nodejs/node.js 4.0.0 - 4.2.3

openssl/openssl 1.0.1

openssl/openssl 1.0.1a

... and 20 more

Published Dec 06, 2015

Tracked Since Feb 18, 2026