First published: Fri Dec 04 2015(Updated: )
LibreSSL. Multiple issues were addressed by updating to libressl version 2.6.4.
Credit: CVE-2015-3194 CVE-2015-5333 CVE-2015-5334 CVE-2016-0702 secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/openssl | <1.0.1 | 1.0.1 |
redhat/openssl | <1.0.2 | 1.0.2 |
OpenSSL OpenSSL | =1.0.1 | |
OpenSSL OpenSSL | =1.0.1a | |
OpenSSL OpenSSL | =1.0.1b | |
OpenSSL OpenSSL | =1.0.1c | |
OpenSSL OpenSSL | =1.0.1d | |
OpenSSL OpenSSL | =1.0.1e | |
OpenSSL OpenSSL | =1.0.1f | |
OpenSSL OpenSSL | =1.0.1g | |
OpenSSL OpenSSL | =1.0.1h | |
OpenSSL OpenSSL | =1.0.1i | |
OpenSSL OpenSSL | =1.0.1j | |
OpenSSL OpenSSL | =1.0.1k | |
OpenSSL OpenSSL | =1.0.1l | |
OpenSSL OpenSSL | =1.0.1m | |
OpenSSL OpenSSL | =1.0.1n | |
OpenSSL OpenSSL | =1.0.1o | |
OpenSSL OpenSSL | =1.0.1p | |
OpenSSL OpenSSL | =1.0.2 | |
OpenSSL OpenSSL | =1.0.2a | |
OpenSSL OpenSSL | =1.0.2b | |
OpenSSL OpenSSL | =1.0.2c | |
OpenSSL OpenSSL | =1.0.2d | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.04 | |
Canonical Ubuntu Linux | =15.10 | |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =8.0 | |
Nodejs Node.js | >=0.10.0<0.10.41 | |
Nodejs Node.js | >=0.12.0<0.12.9 | |
Nodejs Node.js | >=4.0.0<4.2.3 | |
Nodejs Node.js | >=5.0.0<5.1.1 | |
Apple macOS Mojave | <10.14 | 10.14 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2015-3194 is a vulnerability in OpenSSL that allows remote attackers to cause a denial of service.
To fix the CVE-2015-3194 vulnerability, update to OpenSSL version 1.0.1q or 1.0.2e.
The severity of CVE-2015-3194 is high with a CVSS score of 7.5.
You can find more information about CVE-2015-3194 on the OpenSSL website and Git repository.
The CWE ID for CVE-2015-3194 is CWE-476.