CVE-2015-3194 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2015-3194?

CVE-2015-3194 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-3194?

Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Canonical Ubuntu Linux, Debian Debian Linux, Nodejs Node.Js.

Vulnerability Description

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Openssl	Openssl	1.0.1
Canonical	Ubuntu Linux	12.04
Debian	Debian Linux	7.0
Nodejs	Node.Js	>= 0.10.0, < 0.10.41

Related Weaknesses (CWE)

CWE-476

References

http://fortiguard.com/advisory/openssl-advisory-december-2015Third Party Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759Third Party Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-December/173801.hMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-12/msg00070.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-12/msg00071.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-12/msg00087.htmlMailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=145382583417444&w=2Mailing ListThird Party Advisory
http://openssl.org/news/secadv/20151203.txtVendor Advisory
http://rhn.redhat.com/errata/RHSA-2015-2617.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2957.htmlThird Party Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Third Party Advisory
http://www.debian.org/security/2015/dsa-3413Third Party Advisory

FAQ

What is CVE-2015-3194?

CVE-2015-3194 is a vulnerability with a CVSS score of 7.5 (HIGH). crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1...

How severe is CVE-2015-3194?

CVE-2015-3194 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-3194?

Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Canonical Ubuntu Linux, Debian Debian Linux, Nodejs Node.Js.