VDB
GCVE-110-MAGEIA-2015-466
GCVE-110-MAGEIA-2015-466
Advisory Published
If a client receives a ServerKeyExchange for an anonymous DH ciphersuite
with the value of p set to 0 then a seg fault can occur leading to a
possible denial of service attack (CVE-2015-1794).
Loic Jonas Etienne of Qnective AG discovered that the signature
verification routines will crash with a NULL pointer dereference if
presented with an ASN.1 signature using the RSA PSS algorithm and absent
mask generation function parameter. A remote attacker can exploit this
flaw to crash any certificate verification operation and mount a denial of
service attack (CVE-2015-3194).
Adam Langley of Google/BoringSSL discovered that OpenSSL will leak memory
when presented with a malformed X509_ATTRIBUTE structure (CVE-2015-3195).
A race condition flaw in the handling of PSK identify hints was
discovered, potentially leading to a double free of the identify hint data
(CVE-2015-3196).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | openssl | 0 (affected), * (unaffected) | — |
Aliases
Browse GCVE Records
73,738 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.