Back to search
CVE-2016-2109
Published: May 5, 2016
Modified: Aug 5, 2024
PUBLISHED
Description
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSA:2016-124-01
vendor-advisory
RHSA-2016:2056
vendor-advisory
openSUSE-SU-2016:1238
vendor-advisory
openSUSE-SU-2016:1242
vendor-advisory
SUSE-SU-2016:1267
vendor-advisory
RHSA-2016:2073
vendor-advisory
DSA-3566
vendor-advisory
openSUSE-SU-2016:1243
vendor-advisory
GLSA-201612-16
vendor-advisory
SUSE-SU-2016:1228
vendor-advisory
1035721
vdb-entry
openSUSE-SU-2016:1239
vendor-advisory
SUSE-SU-2016:1206
vendor-advisory
SUSE-SU-2016:1231
vendor-advisory
openSUSE-SU-2016:1240
vendor-advisory
openSUSE-SU-2016:1241
vendor-advisory
APPLE-SA-2016-07-18-1
vendor-advisory
SUSE-SU-2016:1360
vendor-advisory
SUSE-SU-2016:1233
vendor-advisory
openSUSE-SU-2016:1237
vendor-advisory
RHSA-2016:0996
vendor-advisory
91787
vdb-entry
SUSE-SU-2016:1290
vendor-advisory
openSUSE-SU-2016:1273
vendor-advisory
RHSA-2016:2957
vendor-advisory
USN-2959-1
vendor-advisory
87940
vdb-entry
RHSA-2016:0722
vendor-advisory
FreeBSD-SA-16:17
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now