CVE-2015-1789 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Openssl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125 — Out-of-bounds Read CWE-20 — Improper Input Validation CWE-39920 documents13 sources

Severity

7.5HIGHNVD

EPSS

3.4%

top 12.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl Oracle Sparc-opl Service Processor +4 more

Timeline

PublishedJun 12

Latest updateNov 7

Description

The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages9 packages

▶debiandebian/openssl< openssl 1.0.2b-1 (bookworm)

▶Debianopenssl/openssl< 1.0.2b-1+3

▶Ubuntuopenssl/openssl< 1.0.1f-1ubuntu2.15

▶NVDopenssl/openssl0.9.8zf+35

▶NVDoracle/sparc-opl_service_processor1121

🔴Vulnerability Details

GHSA

GHSA-q289-c6qx-8gxc: The X509_cmp_time function in crypto/x509/x509_vfy↗2022-05-13

▶

OSV

CVE-2015-1789: The X509_cmp_time function in crypto/x509/x509_vfy↗2015-06-12

▶

OSV

openssl vulnerabilities↗2015-06-11

▶

📋Vendor Advisories

Palo Alto

PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent↗2024-11-07

▶

CISA ICS

Siemens SCALANCE X-200RNA Switch Devices↗2022-12-19

▶

Palo Alto

PAN-SA-2016-0028 OpenSSL Vulnerabilities↗2016-10-18

▶

Palo Alto

PAN-SA-2016-0020 OpenSSL Vulnerabilities↗2016-08-15

▶

Cisco

Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products↗2015-06-12

▶

🕵️Threat Intelligence

Tenable

[R3] LCE 5.0.0 Fixes Multiple Third-party Library Vulnerabilities↗2017-01-31

▶

Tenable

[R7] OpenSSL '20150611' Advisory Affects Tenable Products↗2015-06-30

▶

💬Community

Bugzilla

CVE-2015-8106 latex2rtf: Format string vulnerability in CmdKeywords↗2015-11-16

▶

Bugzilla

CVE-2015-3216 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792 CVE-2015-1791 CVE-2014-8176: OpenSSL multiple security issues [fedora-all]↗2015-06-12

▶

Bugzilla

CVE-2015-1789 OpenSSL: out-of-bounds read in X509_cmp_time↗2015-06-05

▶