First published: Mon Sep 24 2018(Updated: )
LibreSSL. Multiple issues were addressed by updating to libressl version 2.6.4.
Credit: CVE-2015-3194 CVE-2015-5333 CVE-2015-5334 CVE-2016-0702 secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Mojave | <10.14 | 10.14 |
Openbsd Libressl | <2.3.1 | |
openSUSE openSUSE | =13.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2015-5333 is a vulnerability in LibreSSL that allows remote attackers to cause a denial of service (memory consumption) by exploiting a memory leak in the OBJ_obj2txt function.
The severity of CVE-2015-5333 is high, with a severity score of 7.5.
To fix CVE-2015-5333 on macOS Mojave, update to version 10.14 or later of macOS.
To fix CVE-2015-5333 in LibreSSL on OpenBSD, update to version 2.3.1 or later of LibreSSL.
To fix CVE-2015-5333 in opensuse, update to version 13.2 or later of opensuse.