CVE-2015-5291: Buffer Overflow

First published: Mon Nov 02 2015(Updated: )

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a long hostname to the server name indication (SNI) extension, which is not properly handled when creating a ClientHello message. NOTE: this identifier has been SPLIT per ADT3 due to different affected version ranges. See CVE-2015-8036 for the session ticket issue that was introduced in 1.3.0.

Credit: secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/type
• agent/last-modified-date
• agent/first-publish-date
• agent/severity
• agent/weakness
• agent/author
• agent/description
• agent/event
• agent/tags
• collector/nvd-index
• agent/software-canonical-lookup-request
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• vendor/arm
• canonical/arm mbed tls
• version/arm mbed tls/1.3.0
• version/arm mbed tls/2.0.0
• vendor/polarssl
• canonical/polarssl polarssl
• version/polarssl polarssl/1.0.0
• vendor/debian
• canonical/debian debian linux
• version/debian debian linux/7.0
• version/debian debian linux/8.0
• vendor/fedoraproject
• canonical/fedoraproject fedora
• version/fedoraproject fedora/21
• version/fedoraproject fedora/22
• version/fedoraproject fedora/23
• vendor/opensuse
• canonical/opensuse leap
• version/opensuse leap/42.1
• canonical/opensuse opensuse
• version/opensuse opensuse/13.2