NVD
- Id
- 18403
- Name
- CVE-2016-2106
- Description
- Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.
- Reject
- CVSS Version
- 2
- CVSS Score
- 5
- Severity
- Medium
- CVSS Base Score
- 5
- CVSS Impact Subscore
- 2.9
- CVSS Exploit Subscore
- 10
- CVSS Vector
- (AV:N/AC:L/Au:N/C:N/I:N/A:P)
- Pub Date
- 2017-06-12
- Published
- 2016-05-04
- Modified Date
- 2017-06-08
- Seq
- 2016-2106
Related NVD References
Id | NVD Id | NVD No. | Reference | Actions |
---|---|---|---|---|
101869 | 18403 | CVE-2016-2106 | http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759 | View |
101870 | 18403 | CVE-2016-2106 | APPLE-SA-2016-07-18-1 | View |
101871 | 18403 | CVE-2016-2106 | FEDORA-2016-05c567df1a | View |
101872 | 18403 | CVE-2016-2106 | FEDORA-2016-1411324654 | View |
101873 | 18403 | CVE-2016-2106 | FEDORA-2016-1e39d934ed | View |
101874 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1206 | View |
101875 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1228 | View |
101876 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1231 | View |
101877 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1233 | View |
101878 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1237 | View |
101879 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1238 | View |
101880 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1239 | View |
101881 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1240 | View |
101882 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1241 | View |
101883 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1242 | View |
101884 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1243 | View |
101885 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1267 | View |
101886 | 18403 | CVE-2016-2106 | openSUSE-SU-2016:1273 | View |
101887 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1290 | View |
101888 | 18403 | CVE-2016-2106 | SUSE-SU-2016:1360 | View |
101889 | 18403 | CVE-2016-2106 | http://packetstormsecurity.com/files/136912/Slackware-Security-Advisory-openssl-Updates.html | View |
101890 | 18403 | CVE-2016-2106 | RHSA-2016:0722 | View |
101891 | 18403 | CVE-2016-2106 | RHSA-2016:0996 | View |
101892 | 18403 | CVE-2016-2106 | RHSA-2016:1648 | View |
101893 | 18403 | CVE-2016-2106 | RHSA-2016:1649 | View |
101894 | 18403 | CVE-2016-2106 | RHSA-2016:1650 | View |
101895 | 18403 | CVE-2016-2106 | 20160504 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016 | View |
101896 | 18403 | CVE-2016-2106 | DSA-3566 | View |
101897 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html | View |
101898 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html | View |
101899 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html | View |
101900 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html | View |
101901 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html | View |
101902 | 18403 | CVE-2016-2106 | http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html | View |
101903 | 18403 | CVE-2016-2106 | 89744 | View |
101904 | 18403 | CVE-2016-2106 | 91787 | View |
101905 | 18403 | CVE-2016-2106 | 1035721 | View |
101906 | 18403 | CVE-2016-2106 | SSA:2016-124-01 | View |
101907 | 18403 | CVE-2016-2106 | USN-2959-1 | View |
101908 | 18403 | CVE-2016-2106 | https://bto.bluecoat.com/security-advisory/sa123 | View |
101909 | 18403 | CVE-2016-2106 | https://git.openssl.org/?p=openssl.git;a=commit;h=3f3582139fbb259a1c3cbb0a25236500a409bf26 | View |
101910 | 18403 | CVE-2016-2106 | https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05320149 | View |
101911 | 18403 | CVE-2016-2106 | https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40202 | View |
101912 | 18403 | CVE-2016-2106 | https://kc.mcafee.com/corporate/index?page=content&id=SB10160 | View |
101913 | 18403 | CVE-2016-2106 | GLSA-201612-16 | View |
101914 | 18403 | CVE-2016-2106 | https://support.apple.com/HT206903 | View |
101915 | 18403 | CVE-2016-2106 | FreeBSD-SA-16:17 | View |
101916 | 18403 | CVE-2016-2106 | https://www.openssl.org/news/secadv/20160503.txt | View |
Related JVN
Id | Name | Title | Summary | Cveinfo Name | Cveinfo Id | Nvdinfo Name | Nvdinfo Id | Cvssv2 | Cvssv3 | Jvnurl | Published Date | Last Updated Date | Actions |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1700 | JVNDB-2016-002473 | OpenSSL の crypto/evp/evp_enc.c の EVP_EncryptUpdate 関数における整数オーバーフローの脆弱性 | OpenSSL の crypto/evp/evp_enc.c の EVP_EncryptUpdate 関数には、整数オーバーフローの脆弱性が存在します。 | CVE-2016-2106 | 88612 | CVE-2016-2106 | 18403 | 5 | 7.5 | http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002473.html | 2016-05-03 | 2016-12-05 | View |