CVE-2015-0292: Buffer Overflow
First published: Mon Mar 16 2015(Updated: )
A vulnerability existed in previous versions of OpenSSL related to the processing of base64-encoded data. Any code path that reads base64 data from an untrusted source could be affected (such as the PEM processing routines). Maliciously crafted base 64 data could trigger a segmenation fault or memory corruption. This was addressed in previous versions of OpenSSL but has not been included in any security advisory until now. This issue affects OpenSSL versions 1.0.1, 1.0.0, and 0.9.8. This issue is fixed in versions: 1.0.1h, 1.0.0m, and 0.9.8za. Acknowledgements: Red Hat would like to thank the OpenSSL project for reporting this issue. Upstream acknowledges Robert Dugal and David Ramos as the original reporters.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/openssl | <1.0.1 | 1.0.1 |
| redhat/openssl | <0.9.8 | 0.9.8 |
| OpenSSL | <=0.9.8z | |
| OpenSSL | =1.0.0 | |
| OpenSSL | =1.0.0a | |
| OpenSSL | =1.0.0b | |
| OpenSSL | =1.0.0c | |
| OpenSSL | =1.0.0d | |
| OpenSSL | =1.0.0e | |
| OpenSSL | =1.0.0f | |
| OpenSSL | =1.0.0g | |
| OpenSSL | =1.0.0h | |
| OpenSSL | =1.0.0i | |
| OpenSSL | =1.0.0j | |
| OpenSSL | =1.0.0k | |
| OpenSSL | =1.0.0l | |
| OpenSSL | =1.0.1 | |
| OpenSSL | =1.0.1a | |
| OpenSSL | =1.0.1b | |
| OpenSSL | =1.0.1c | |
| OpenSSL | =1.0.1d | |
| OpenSSL | =1.0.1e | |
| OpenSSL | =1.0.1f | |
| OpenSSL | =1.0.1g |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://rt.openssl.org/Ticket/Display.html?id=2608&user=guest&pass=guest
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=d0666f2
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=84fe686
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9febee0
- https://openssl.org/news/secadv_20150319.txt
- https://access.redhat.com/articles/1384453
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1196738
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1203855
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1203856
- https://rhn.redhat.com/errata/RHSA-2015-0715.html
- https://rhn.redhat.com/errata/RHSA-2015-0716.html
- https://rhn.redhat.com/errata/RHSA-2015-0752.html
- https://rhn.redhat.com/errata/RHSA-2015-0800.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1202395
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10680
- http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152733.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152734.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152844.html
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html
- http://marc.info/?l=bugtraq&m=143213830203296&w=2
- http://marc.info/?l=bugtraq&m=143748090628601&w=2
- http://marc.info/?l=bugtraq&m=144050155601375&w=2
- http://marc.info/?l=bugtraq&m=144050297101809&w=2
- http://rhn.redhat.com/errata/RHSA-2015-0715.html
- http://rhn.redhat.com/errata/RHSA-2015-0716.html
- http://rhn.redhat.com/errata/RHSA-2015-0752.html
- http://rhn.redhat.com/errata/RHSA-2015-0800.html
- http://www.debian.org/security/2015/dsa-3197
- http://www.fortiguard.com/advisory/2015-03-24-openssl-vulnerabilities-march-2015
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
- http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
- http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
- http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
- http://www.securityfocus.com/bid/73228
- http://www.securitytracker.com/id/1031929
- http://www.ubuntu.com/usn/USN-2537-1
- https://bto.bluecoat.com/security-advisory/sa92
- https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
- https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=d0666f289ac013094bbbf547bfbcd616199b7d2d
- https://kc.mcafee.com/corporate/index?page=content&id=SB10110
- https://security.gentoo.org/glsa/201503-11
- https://support.citrix.com/article/CTX216642
- https://www.openssl.org/news/secadv_20150319.txt
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=d0666f289ac013094bbbf547bfbcd616199b7d2d
Frequently Asked Questions
What is the severity of CVE-2015-0292?
CVE-2015-0292 has been classified as a high severity vulnerability due to its potential to trigger segmentation faults from crafted base64 data.
How do I fix CVE-2015-0292?
To fix CVE-2015-0292, update OpenSSL to version 1.0.1 or later, or apply the relevant patches from your distribution.
Which versions of OpenSSL are affected by CVE-2015-0292?
CVE-2015-0292 affects OpenSSL versions 0.9.8 through 1.0.1, including all iterations of these versions.
What type of attacks does CVE-2015-0292 enable?
CVE-2015-0292 can enable denial of service attacks through segmentation faults when processing maliciously crafted base64 data.
Is CVE-2015-0292 being actively exploited?
As of the last reports, there have been instances of CVE-2015-0292 being exploited in the wild, highlighting the need for prompt remediation.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/references
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2015-0292
- agent/software-canonical-lookup
- agent/trending
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/openssl
- canonical/openssl
- version/openssl/0.9.8z
- version/openssl/1.0.0
- version/openssl/1.0.0a
- version/openssl/1.0.0b
- version/openssl/1.0.0c
- version/openssl/1.0.0d
- version/openssl/1.0.0e
- version/openssl/1.0.0f
- version/openssl/1.0.0g
- version/openssl/1.0.0h
- version/openssl/1.0.0i
- version/openssl/1.0.0j
- version/openssl/1.0.0k
- version/openssl/1.0.0l
- version/openssl/1.0.1
- version/openssl/1.0.1a
- version/openssl/1.0.1b
- version/openssl/1.0.1c
- version/openssl/1.0.1d
- version/openssl/1.0.1e
- version/openssl/1.0.1f
- version/openssl/1.0.1g