NVD

Id
21110  
Name
CVE-2016-6304  
Description
Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-02-06  
Published
2016-09-26  
Modified Date
2017-02-01  
Seq
2016-6304  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
114920 21110 CVE-2016-6304 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759  View
114921 21110 CVE-2016-6304 SUSE-SU-2016:2470  View
114922 21110 CVE-2016-6304 RHSA-2016:2802  View
114923 21110 CVE-2016-6304 http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html  View
114924 21110 CVE-2016-6304 http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html  View
114925 21110 CVE-2016-6304 http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html  View
114926 21110 CVE-2016-6304 93150  View
114927 21110 CVE-2016-6304 http://www.splunk.com/view/SP-CAAAPSV  View
114928 21110 CVE-2016-6304 http://www.splunk.com/view/SP-CAAAPUE  View
114929 21110 CVE-2016-6304 https://bto.bluecoat.com/security-advisory/sa132  View
114930 21110 CVE-2016-6304 https://git.openssl.org/?p=openssl.git;a=commit;h=2c0d295e26306e15a92eb23a84a1802005c1c137  View
114931 21110 CVE-2016-6304 https://kc.mcafee.com/corporate/index?page=content&id=SB10171  View
114932 21110 CVE-2016-6304 https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/  View
114933 21110 CVE-2016-6304 GLSA-201612-16  View
114934 21110 CVE-2016-6304 https://www.openssl.org/news/secadv/20160922.txt  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
4217 JVNDB-2016-004990 OpenSSL の t1_lib.c におけるサービス運用妨害 (DoS) の脆弱性 OpenSSL の t1_lib.c には、メモリリークにより、サービス運用妨害 (メモリ消費) 状態にされる脆弱性が存在します。 CVE-2016-6304 92811 CVE-2016-6304 21110 7.8 7.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004990.html 2016-09-22 2016-11-17 View