Oval Definition:
oval:com.ubuntu.trusty:def:20151794000
Revision Date
:
2015-12-06
Version
:
1
Title
:
CVE-2015-1794 on Ubuntu 14.04 LTS (trusty) - low.
Description
:
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2015-1794
Platform(s)
:
Ubuntu 14.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed.
AND
Package Information
NOT
While related to the CVE in some way, the 'openssl' package in trusty is not affected (note: '1.0.1f-1ubuntu2.15').
OR
NOT
While related to the CVE in some way, the 'openssl098' package in trusty is not affected.
BACK