« List of all CVEs

CVE-2015-3194

Published: 12/6/2015 Last updated: 8/6/2024 Reserved: 4/10/2015

crypto/rsa/rsa_ameth.c in OpenSSL 1.0.1 before 1.0.1q and 1.0.2 before 1.0.2e allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RSA PSS ASN.1 signature that lacks a mask generation function parameter.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (7)

conf-libcurl conf-libssl conf-mingw-w64-openssl-i686 conf-mingw-w64-openssl-x86_64 conf-npm conf-openssl conf-srt-openssl

Products affected (1)

Product	Vendor	Version
n/a	n/a	n/a

References (76)