CVE-2015-3194

HIGH severity · CVSS 7.5 · CWE-476

7.5CVSS HIGH

Summary

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges requiredNone

User interactionNone

Confidentiality impactNone

Integrity impactNone

Availability impactHigh

Exploit probability (EPSS)54%

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products we track (4)

Node.js OpenSSL Ubuntu Debian

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information

NVD record
http://fortiguard.com/advisory/openssl-advisory-december-2015Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.htmlAdvisory
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.htmlAdvisory
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.htmlAdvisory
http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.htmlAdvisory
http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.htmlAdvisory