CVE-2015-1790

Description

The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PKCS#7 blob that uses ASN.1 encoding and lacks inner EncryptedContent data.

5.0

CVSS

Severity: Medium

CVSS 2.0 •

EPSS 11.85% Top 10%

Vendor Advisory opensuse.org Vendor Advisory marc.info Vendor Advisory debian.org Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory marc.info Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory fedoraproject.org Vendor Advisory cisco.com Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory apple.com Vendor Advisory ubuntu.com Vendor Advisory gentoo.org Vendor Advisory fedoraproject.org Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory netbsd.org Vendor Advisory marc.info Vendor Advisory openssl.org

Affected: n/a n/a

References

Link	Tags
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html	vendor advisory
http://marc.info/?l=bugtraq&m=143880121627664&w=2	vendor advisory
http://www.debian.org/security/2015/dsa-3287	vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html	vendor advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10122
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html	vendor advisory
http://fortiguard.com/advisory/openssl-vulnerabilities-june-2015
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05353965
https://openssl.org/news/secadv/20150611.txt
http://rhn.redhat.com/errata/RHSA-2015-1115.html	vendor advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://rhn.redhat.com/errata/RHSA-2015-1197.html	vendor advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html	vendor advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html	vendor advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05184351
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html	vendor advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securitytracker.com/id/1032564	vdb entry
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
http://www.fortiguard.com/advisory/2015-06-11-fortinet-vulnerability-openssl-vulnerabilities-june-2015
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160647.html	vendor advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150612-openssl	vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html	vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html	vendor advisory
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html	vendor advisory
http://www.ubuntu.com/usn/USN-2639-1	vendor advisory
http://www.fortiguard.com/advisory/openssl-vulnerabilities-june-2015
https://security.gentoo.org/glsa/201506-02	vendor advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05131044
http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
http://www.securityfocus.com/bid/91787	vdb entry
https://github.com/openssl/openssl/commit/59302b600e8d5b77ef144e447bb046fd7ab72686
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160436.html	vendor advisory
https://support.apple.com/kb/HT205031
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html	vendor advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10694
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html	vendor advisory
https://bto.bluecoat.com/security-advisory/sa98
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10733
http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.asc	vendor advisory
https://www.openssl.org/news/secadv_20150611.txt	vendor advisory
http://www.securityfocus.com/bid/75157	vdb entry
http://marc.info/?l=bugtraq&m=143654156615516&w=2	vendor advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/1144-security-advisory-11
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Frequently Asked Questions

What is the severity of CVE-2015-1790?: CVE-2015-1790 has been scored as a medium severity vulnerability.
How to fix CVE-2015-1790?: To fix CVE-2015-1790, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2015-1790 being actively exploited in the wild?: It is possible that CVE-2015-1790 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~12% probability that this vulnerability will be exploited by malicious actors in the next 30 days.