NVD
- Id
- 17096
- Name
- CVE-2016-0705
- Description
- Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed DSA private key.
- Reject
- CVSS Version
- 2
- CVSS Score
- 10
- Severity
- High
- CVSS Base Score
- 10
- CVSS Impact Subscore
- 10
- CVSS Exploit Subscore
- 10
- CVSS Vector
- (AV:N/AC:L/Au:N/C:C/I:C/A:C)
- Pub Date
- 2017-01-19
- Published
- 2016-03-03
- Modified Date
- 2016-12-27
- Seq
- 2016-0705
Related NVD References
Related JVN
| Id | Name | Title | Summary | Cveinfo Name | Cveinfo Id | Nvdinfo Name | Nvdinfo Id | Cvssv2 | Cvssv3 | Jvnurl | Published Date | Last Updated Date | Actions |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 840 | JVNDB-2016-001613 | OpenSSL の crypto/dsa/dsa_ameth.c の dsa_priv_decode 関数におけるメモリ二重解放の脆弱性 | OpenSSL の crypto/dsa/dsa_ameth.c の dsa_priv_decode 関数には、メモリ二重解放の脆弱性が存在します。 | CVE-2016-0705 | 86909 | CVE-2016-0705 | 17096 | 10 | 9.8 | http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-001613.html | 2016-03-01 | 2016-11-21 | View |
