CVE-2015-5334Off-by-one Error in Libressl

5 documents3 sources
Severity
9.8CRITICALNVD
EPSS
9.9%
top 6.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Openbsd LibresslApple Macos MojaveApple OS X EL Capitan 10.11.2 Security Update 2015-005 Yosemite AND Security Update 20+2 more
Timeline
PublishedJan 23
Latest updateMay 24

Description

Off-by-one error in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (program crash) or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability exists because of an incorrect fix for CVE-2014-3508.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

NVDopenbsd/libressl< 2.3.1
Appleapple/macos_mojave10.14

🔴Vulnerability Details

1
GHSA
GHSA-6q9j-c3rh-x87m: Off-by-one error in the OBJ_obj2txt function in LibreSSL before 22022-05-24

📋Vendor Advisories

3
Apple
CVE-2015-5334: macOS Mojave 10.142018-09-24
Apple
CVE-2015-5334: OS X El Capitan v10.11.4 and Security Update 2016-002
Apple
CVE-2015-5334: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks