Oval Definition:	oval:org.opensuse.security:def:20151182
Revision Date: 2022-06-30 Version: 1 Title: CVE-2015-1182 Description: The asn1_get_sequence_of function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1_sequence linked list, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ASN.1 sequence in a certificate. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-1182 Mitre CVE-2015-1182 SUSE CVE-2015-1182 openSUSE-SU-2015:0186-1 Platform(s): openSUSE 13.2 openSUSE Leap 42.2 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE 13.2 is installed AND Package Information libpolarssl7-1.3.9-8.1 is installed OR polarssl-1.3.9-8.1 is installed OR polarssl-devel-1.3.9-8.1 is installed Definition Synopsis openSUSE Leap 42.2 is installed AND Package Information libmbedtls9-1.3.17-13.1 is installed AND libmbedtls9 is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information libmbedcrypto0-2.4.0-1.2 is installed OR libmbedcrypto0-32bit-2.4.0-1.2 is installed OR libmbedtls10-2.4.0-1.2 is installed OR libmbedtls10-32bit-2.4.0-1.2 is installed OR libmbedx509-0-2.4.0-1.2 is installed OR libmbedx509-0-32bit-2.4.0-1.2 is installed OR mbedtls-devel-2.4.0-1.2 is installed
BACK