Vulnerability & Exploit Database

Displaying all 3 entries

Results for: CVE-2017-0605 Back to search

SUSE: CVE-2016-7056: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: January 09, 2017

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-7CAEBE30-D7F1-11E6-A9A5-B499BAEBFEAF:

Cesar Pereida Garcia reports:

The signing function in cry...

SUSE: CVE-2016-8610: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 01, 2016

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients....

SUSE: CVE-2016-2108: SUSE Linux Security Advisory Vulnerability

  • Severity: 10
  • Published: May 02, 2016

The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service (buffer underflow and memory corruption) via an ANY field in crafted serialized data, aka the "negative zero" issue.