Vulnerability Name:

CVE-2016-6306

Assigned:2016-09-21
Published:2016-09-21
Updated:2018-07-13
Summary:The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.
CVSS v3 Severity:5.9 Medium (CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.2 Medium (Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
4.3 Medium (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L)
3.8 Low (CCN Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
5.9 Medium (REDHAT CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.2 Medium (REDHAT Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
1.2 Low (REDHAT CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-125
References:Source: CONFIRM
Type: UNKNOWN
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Source: SUSE
Type: VENDOR_ADVISORY
SUSE-SU-2016:2470

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1940

Source: CONFIRM
Type: UNKNOWN
http://www-01.ibm.com/support/docview.wss?uid=swg21995039

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html

Source: BID
Type: UNKNOWN
93153

Source: SECTRACK
Type: UNKNOWN
1036885

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2185

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2186

Source: REDHAT
Type: UNKNOWN
RHSA-2018:2187

Source: CONFIRM
Type: UNKNOWN
https://bto.bluecoat.com/security-advisory/sa132

Source: XF
Type: UNKNOWN
openssl-cve20166306-dos(117112)

Source: CONFIRM
Type: UNKNOWN
https://git.openssl.org/?p=openssl.git;a=commit;h=52e623c4cb06fffa9d5e75c60b34b4bc130b12e9

Source: CONFIRM
Type: VENDOR_ADVISORY
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448

Source: CONFIRM
Type: UNKNOWN
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312

Source: CONFIRM
Type: VENDOR_ADVISORY
https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/

Source: FREEBSD
Type: UNKNOWN
FreeBSD-SA-16:26

Source: GENTOO
Type: UNKNOWN
GLSA-201612-16

Source: CONFIRM
Type: UNKNOWN
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us

Source: CONFIRM
Type: VENDOR_ADVISORY
https://www.openssl.org/news/secadv/20160922.txt

Source: CONFIRM
Type: UNKNOWN
https://www.tenable.com/security/tns-2016-16

Source: CONFIRM
Type: UNKNOWN
https://www.tenable.com/security/tns-2016-20

Source: CONFIRM
Type: UNKNOWN
https://www.tenable.com/security/tns-2016-21

Vulnerable Configuration:Configuration 1:
  • cpe:/a:openssl:openssl:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1:beta1:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1:beta2:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1:beta3:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1i:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1j:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1k:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1l:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1m:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1n:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1o:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1p:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1q:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1r:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1s:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.1t:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/a:hp:icewall_federation_agent:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:hp:icewall_mcrp:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:hp:icewall_sso:10.0::~~certd~~~:*:*:*:*:*
  • OR cpe:/a:hp:icewall_sso:10.0::~~dfw~~~:*:*:*:*:*
  • OR cpe:/a:hp:icewall_sso_agent_option:10.0:*:*:*:*:*:*:*

  • Configuration 3:
  • cpe:/o:novell:suse_linux_enterprise_module_for_web_scripting:12.0:*:*:*:*:*:*:*

  • Configuration 4:
  • cpe:/a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta1:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta2:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:beta3:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*

  • Configuration 5:
  • cpe:/a:nodejs:node.js:6.6.0:*:*:*:*:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:openssl:openssl:1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openssl:openssl:1.1.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:rational_clearcase:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:10.1::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:8.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.0::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:9.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_storage_flashcopy_manager:3.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:messagesight_jms_client:1.1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_storage_flashcopy_manager:3.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_storage_flashcopy_manager:4.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.3::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.4::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_insight:1.1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:pureapplication_system:2.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:7.1.2.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_business_intelligence:10.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_identity_manager:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:messagesight:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:7.1.2.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearcase:8.0.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.0:*:*:*:*:*:*:*
  • OR cpe:/h:ibm:flex_system_manager_node_7955:-:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:systems_director:5.20:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:7.1::~~~vmware~~:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_privileged_identity_manager:2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:mq_appliance_m2000:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11.0.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:powerkvm:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:9.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_master_data_management:11.5::~~collaborative~~~:*:*:*:*:*
  • OR cpe:/a:ibm:integration_bus:10.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:mq_appliance_m2000:8.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_identity_governance_and_intelligence:5.2.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sametime:9.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:bigfix_platform:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:bigfix_platform:9.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:bigfix_platform:9.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.18:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:9.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.0.19:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_clearquest:8.0.1.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:7.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:9.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:9.0.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_privileged_identity_manager:2.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11.0.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:9.0.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1.3:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20166306
    V
    CVE-2016-6306
    2018-09-23
    oval:org.cisecurity:def:1928
    V
    Vulnerability in certificate parser in OpenSSL 1.0.1 before 1.0.1u, and 1.0.2 before 1.0.2i - CVE-2016-6306
    2017-03-03
    oval:org.cisecurity:def:1210
    P
    DSA-3673-1 -- openssl -- security update
    2016-11-10
    oval:com.redhat.rhsa:def:20161940
    P
    RHSA-2016:1940: openssl security update (Important)
    2016-09-27
    oval:com.ubuntu.artful:def:20166306000
    V
    CVE-2016-6306 on Ubuntu 17.10 (artful) - medium.
    2016-09-26
    oval:com.ubuntu.bionic:def:20166306000
    V
    CVE-2016-6306 on Ubuntu 18.04 LTS (bionic) - medium.
    2016-09-26
    oval:com.ubuntu.precise:def:20166306000
    V
    CVE-2016-6306 on Ubuntu 12.04 LTS (precise) - medium.
    2016-09-26
    oval:com.ubuntu.trusty:def:20166306000
    V
    CVE-2016-6306 on Ubuntu 14.04 LTS (trusty) - medium.
    2016-09-26
    oval:com.ubuntu.xenial:def:20166306000
    V
    CVE-2016-6306 on Ubuntu 16.04 LTS (xenial) - medium.
    2016-09-26
    BACK
    openssl openssl 1.0.1
    openssl openssl 1.0.1 beta1
    openssl openssl 1.0.1 beta2
    openssl openssl 1.0.1 beta3
    openssl openssl 1.0.1a
    openssl openssl 1.0.1b
    openssl openssl 1.0.1c
    openssl openssl 1.0.1d
    openssl openssl 1.0.1e
    openssl openssl 1.0.1f
    openssl openssl 1.0.1g
    openssl openssl 1.0.1h
    openssl openssl 1.0.1i
    openssl openssl 1.0.1j
    openssl openssl 1.0.1k
    openssl openssl 1.0.1l
    openssl openssl 1.0.1m
    openssl openssl 1.0.1n
    openssl openssl 1.0.1o
    openssl openssl 1.0.1p
    openssl openssl 1.0.1q
    openssl openssl 1.0.1r
    openssl openssl 1.0.1s
    openssl openssl 1.0.1t
    hp icewall federation agent 3.0
    hp icewall mcrp 3.0
    hp icewall sso 10.0
    hp icewall sso 10.0
    hp icewall sso agent option 10.0
    novell suse linux enterprise module for web scripting 12.0
    openssl openssl 1.0.2
    openssl openssl 1.0.2 beta1
    openssl openssl 1.0.2 beta2
    openssl openssl 1.0.2 beta3
    openssl openssl 1.0.2a
    openssl openssl 1.0.2b
    openssl openssl 1.0.2c
    openssl openssl 1.0.2d
    openssl openssl 1.0.2e
    openssl openssl 1.0.2f
    openssl openssl 1.0.2h
    nodejs node.js 6.6.0
    openssl openssl 1.0.0
    openssl openssl 1.0.2
    openssl openssl 1.1.0
    ibm rational clearcase 7.1
    ibm rational clearquest 7.1
    ibm rational clearquest 7.1.0.2
    ibm rational clearquest 7.1.1.3
    ibm rational clearquest 7.1.1.2
    ibm rational clearquest 7.1.1.1
    ibm rational clearquest 7.1.2
    ibm rational clearcase 7.1.0.1
    ibm rational clearcase 7.1.0.2
    ibm rational clearcase 7.1.1
    ibm rational clearcase 7.1.1.1
    ibm rational clearcase 7.1.1.2
    ibm rational clearcase 7.1.1.3
    ibm rational clearcase 7.1.1.4
    ibm rational clearquest 7.1.0.1
    ibm rational clearquest 7.1.1.4
    ibm rational clearquest 8.0
    ibm rational clearquest 7.1.1.5
    ibm rational clearquest 7.1.1.6
    ibm rational clearquest 7.1.1.7
    ibm rational clearquest 7.1.1.8
    ibm rational clearquest 7.1.2.1
    ibm rational clearquest 7.1.2.2
    ibm rational clearquest 7.1.2.3
    ibm rational clearquest 7.1.2.4
    ibm rational clearquest 7.1.2.5
    ibm rational clearquest 8.0.0.1
    ibm infosphere master data management 10.1
    ibm infosphere information server 8.7
    ibm rational clearquest 7.1.2.6
    ibm rational clearquest 7.1.2.7
    ibm rational clearquest 7.1.2.8
    ibm rational clearquest 8.0.0.2
    ibm rational clearquest 8.0.0.3
    ibm rational clearquest 8.0.0.4
    ibm infosphere information server 9.1
    ibm cognos business intelligence 10.1.1
    ibm cognos business intelligence 10.2
    ibm rational clearquest 7.1.2.9
    ibm rational clearquest 8.0.0.5
    ibm rational insight 1.1.1.5
    ibm rational insight 1.1.1.5
    ibm infosphere master data management 11.0
    ibm rational clearcase 8.0.0.3
    ibm rational clearcase 8.0.0.4
    ibm rational clearcase 8.0.0.5
    ibm rational clearcase 8.0.0.6
    ibm rational clearcase 8.0.0.7
    ibm rational clearcase 8.0.1
    ibm rational clearquest 7.1.1.9
    ibm rational clearquest 7.1.2.10
    ibm rational clearquest 7.1.2.11
    ibm rational clearquest 8.0.0.6
    ibm rational clearquest 8.0.0.7
    ibm rational clearquest 8.0.1
    ibm integration bus 9.0
    ibm cognos business intelligence 10.2.1
    ibm rational clearcase 7.1.1.5
    ibm rational clearcase 7.1.1.6
    ibm rational clearcase 7.1.1.7
    ibm rational clearcase 7.1.1.8
    ibm rational clearcase 7.1.1.9
    ibm rational clearcase 7.1.2
    ibm rational clearcase 7.1.2.1
    ibm rational clearcase 7.1.2.2
    ibm rational clearcase 7.1.2.3
    ibm rational clearcase 7.1.2.4
    ibm rational clearcase 7.1.2.5
    ibm rational clearcase 7.1.2.6
    ibm rational clearcase 7.1.2.7
    ibm rational clearcase 7.1.2.9
    ibm rational clearcase 7.1.2.10
    ibm rational clearcase 7.1.2.11
    ibm rational clearcase 7.1.2.12
    ibm rational clearcase 8.0
    ibm rational clearcase 8.0.0.1
    ibm rational clearcase 8.0.0.2
    ibm rational clearcase 8.0.0.8
    ibm rational clearcase 8.0.1.1
    ibm rational clearquest 7.1.1
    ibm rational clearquest 7.1.2.12
    ibm rational clearquest 8.0.0.8
    ibm rational clearquest 8.0.1.1
    ibm sametime 9.0.0.1
    ibm tivoli storage flashcopy manager 3.1.1
    ibm messagesight jms client 1.1.0.0
    ibm tivoli storage flashcopy manager 3.2.0
    ibm tivoli storage flashcopy manager 4.1.0.1
    ibm rational clearcase 8.0.1.2
    ibm rational clearcase 8.0.0.9
    ibm rational clearquest 7.1.2.13
    ibm rational clearquest 7.1.2.14
    ibm rational clearquest 8.0.0.9
    ibm rational clearquest 8.0.0.10
    ibm rational clearquest 8.0.0.11
    ibm rational clearquest 8.0.1.2
    ibm rational clearquest 8.0.1.3
    ibm rational clearquest 8.0.1.4
    ibm infosphere information server 11.3
    ibm i 7.1
    ibm i 7.2
    ibm rational clearcase 7.1.2.13
    ibm rational clearcase 8.0.0.10
    ibm rational clearcase 8.0.1.3
    ibm rational clearcase 7.1.2.14
    ibm rational clearcase 8.0.0.11
    ibm rational clearcase 8.0.1.4
    ibm infosphere master data management 11.3
    ibm infosphere master data management 11.4
    ibm rational clearquest 8.0.0.12
    ibm rational clearquest 8.0.1.5
    ibm rational insight 1.1.1.5
    ibm rational clearcase 8.0.0.12
    ibm rational clearcase 8.0.1.5
    ibm pureapplication system 2.0.0.0
    ibm powerkvm 2.1
    ibm rational clearquest 7.1.2.15
    ibm rational clearcase 7.1.2.15
    ibm cognos business intelligence 10.2.2
    ibm security identity manager 7.0
    ibm messagesight 1.2
    ibm rational clearcase 7.1.2.16
    ibm rational clearcase 8.0.0.13
    ibm rational clearcase 8.0.1.6
    ibm rational clearquest 8.0.0.13
    ibm rational clearquest 8.0.1.6
    ibm tivoli common reporting 3.1
    ibm tivoli common reporting 3.1.0.1
    ibm tivoli common reporting 3.1.0.2
    ibm rational clearquest 8.0.0.14
    ibm rational clearquest 8.0.1.7
    ibm rational clearquest 8.0.0.15
    ibm rational clearquest 8.0.1.8
    ibm infosphere information server 11.5
    ibm security guardium 10.0
    ibm flex system manager node 7955 -
    ibm systems director 5.20
    ibm spectrum protect for virtual environments 7.1
    ibm rational clearquest 8.0.0.16
    ibm rational clearquest 8.0.1.9
    ibm tivoli common reporting 3.1.2.1
    ibm security privileged identity manager 2.0.2
    ibm mq appliance m2000 8.0.0.3
    ibm cognos analytics 11.0.4.0
    ibm powerkvm 3.1
    ibm rational clearquest 8.0.0.17
    ibm rational clearquest 8.0.1.10
    ibm security access manager 9.0.0.1
    ibm infosphere master data management 11.5
    ibm integration bus 10.0
    ibm mq appliance m2000 8.0.0.3
    ibm i 7.3
    redhat enterprise linux hpc node eus 7.2
    redhat enterprise linux server aus 7.2
    redhat enterprise linux server eus 7.2
    ibm security identity governance and intelligence 5.2.1
    redhat enterprise linux desktop 6.0
    redhat enterprise linux server 6.0
    redhat enterprise linux workstation 6.0
    ibm sametime 9.0.1
    ibm bigfix platform 9.1
    ibm bigfix platform 9.2
    ibm bigfix platform 9.5
    ibm security guardium 10.0.1
    ibm rational clearquest 8.0.0.18
    ibm rational clearquest 8.0.1.11
    ibm rational clearquest 9.0
    ibm rational clearquest 9.0.0.1
    ibm security guardium 10.1
    ibm rational clearquest 8.0.0.19
    ibm rational clearquest 8.0.1.12
    ibm security access manager 7.0.0
    ibm security access manager 9.0.0
    ibm security access manager 9.0.1.0
    ibm security guardium 10.1.2
    ibm security privileged identity manager 2.1.0
    ibm cognos analytics 11.0.4.0
    ibm security access manager 9.0.2.0
    ibm security guardium 10.1.3