CVE - CVE - 2016 - 2177

CVE-ID
cve - 2016 - 2177	了解更多国家漏洞数据库(NVD) •CVSS严重性评级•修复信息•••CPE SCAP映射脆弱的软件版本信息
描述
OpenSSL通过1.0.2h错误地使用指针算法堆缓冲边界检查,这可能允许远程攻击者造成拒绝服务(整数溢出和应用程序崩溃)或可能通过利用意想不到的malloc行为未指明的其他影响,s3_srvr有关。c, ssl_sess。c, t1_lib.c。
引用
注意:引用为方便读者提供帮助区分漏洞。并不是完整列表。
报价:91319 URL: http://www.securityfocus.com/bid/91319 BUGTRAQ: 20170801[安全公告]HPESBHF03763 rev .——HPE Comware 7, IMC, VCX产品使用OpenSSL、远程拒绝服务(DoS) URL: http://www.securityfocus.com/archive/1/540957/100/0/threaded BUGTRAQ: 20170801[安全公告]HPESBHF03763 rev .——HPE Comware 7, IMC, VCX产品使用OpenSSL、远程拒绝服务(DoS) URL: http://www.securityfocus.com/archive/1/archive/1/540957/100/0/threaded 思科:20160927多个漏洞OpenSSL影响思科产品:2016年9月 URL: http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco - sa - 20160927 - openssl 确认:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759 确认:http://www ibm.com/support/docview.wss?uid=swg21995039——01. 确认:http://www.huawei.com/en/psirt/security - advisories/huawei - sa - 20170322 - 01 - openssl - en 确认:http://www.oracle.com/technetwork/security - advisory/cpuapr2018 - 3678067. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujan2018 - 3236628. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpujul2017 - 3236622. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpuoct2016 - 2881722. - html 确认:http://www.oracle.com/technetwork/security - advisory/cpuoct2017 - 3236626. - html 确认:http://www.oracle.com/technetwork/topics/security/bulletinapr2016 - 2952098. - html 确认:http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016 - 3090545. - html 确认:http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016 - 3090547. - html 确认:http://www.splunk.com/view/SP-CAAAPSV 确认:http://www.splunk.com/view/SP-CAAAPUE 确认:https://bto.bluecoat.com/security-advisory/sa132 确认:https://bugzilla.redhat.com/show_bug.cgi?id=1341705 确认:https://cert - portal.siemens.com/productcert/pdf/ssa - 412672. - pdf 确认:https://git.openssl.org/?p=openssl.git; =提交;h = a004e72b95835136d3f1ea90517f706c24c03da7 确认:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05302448 确认:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03763en_us 确认:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448 确认:https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312 确认:https://kc.mcafee.com/corporate/index?page=content&id=SB10165 确认:https://kc.mcafee.com/corporate/index?page=content&id=SB10215 确认:https://support.f5.com/csp/article/K23873366 确认:https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03856en_us 确认:https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us 确认:https://www.citect.schneider-electric.com/safety-and-security-central/36-security-notifications/9134-vulnerabilities-within-schneider-electric-floating-license-manager 确认:https://www.schneider 01/——electric.com/en/download/document/sevd - 2018 - 137 确认:https://www.schneider 01/——electric.com/en/download/document/sevd - 2018 - 144 确认:https://www.tenable.com/security/tns - 2016 - 16所示确认:https://www.tenable.com/security/tns - 2016 - 20 确认:https://www.tenable.com/security/tns - 2016 - 21所示 DEBIAN: dsa - 3673 URL: http://www.debian.org/security/2016/dsa - 3673 FREEBSD: FreeBSD-SA-16:26 URL: https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc FULLDISC: 20170717猎户座精英隐藏IP浏览器Pro -所有版本多个已知的漏洞 URL: http://seclists.org/fulldisclosure/2017/Jul/31 GENTOO: glsa - 201612 - 16 URL: https://security.gentoo.org/glsa/201612-16 MISC: https://ics - cert.us cert.gov/advisories/icsa - 18 - 144 - 01 MISC: https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24 MLIST (oss-security): 20160608 cve - 2016 - 2177: OpenSSL定义指针算术 URL: http://www.openwall.com/lists/oss-security/2016/06/08/9 红帽:RHSA-2016:1940 URL: http://rhn.redhat.com/errata/rhsa - 2016 - 1940. - html 红帽:RHSA-2016:2957 URL: http://rhn.redhat.com/errata/rhsa - 2016 - 2957. - html 红帽:RHSA-2017:0193 URL: https://access.redhat.com/errata/RHSA-2017:0193 红帽:RHSA-2017:0194 URL: https://access.redhat.com/errata/RHSA-2017:0194 红帽:RHSA-2017:1658 URL: https://access.redhat.com/errata/RHSA-2017:1658 红帽:RHSA-2017:1659 URL: http://rhn.redhat.com/errata/rhsa - 2017 - 1659. - html SECTRACK: 1036088 URL: http://www.securitytracker.com/id/1036088 SUSE: SUSE-SU-2016:2387 URL: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html SUSE: SUSE-SU-2016:2394 URL: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html SUSE: SUSE-SU-2016:2458 URL: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html SUSE: SUSE-SU-2016:2468 URL: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html SUSE: SUSE-SU-2016:2469 URL: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html SUSE: SUSE-SU-2017:2699 URL: http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html SUSE: SUSE-SU-2017:2700 URL: http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html SUSE: openSUSE-SU-2016:2391 URL: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html SUSE: openSUSE-SU-2016:2407 URL: http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html SUSE: openSUSE-SU-2016:2537 URL: http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html SUSE: openSUSE-SU-2018:0458 URL: http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html UBUNTU: usn - 3087 - 1 URL: http://www.ubuntu.com/usn/usn - 3087 - 1 UBUNTU: usn - 3087 - 2 URL: http://www.ubuntu.com/usn/usn——3087 - 2 UBUNTU: usn - 3181 - 1 URL: http://www.ubuntu.com/usn/usn - 3181 - 1
分配中央社
红帽公司。
创建日期记录
20160129	免责声明:记录创建日期可能反映了CVE ID分配或保留的时候,,不一定表示当发现了这个漏洞,与受影响的供应商,在CVE公开披露,或更新。
阶段(遗留)
分配(20160129)
票(遗留)

评论(遗留)

提出(遗留)
N /一个
这是一个记录CVE列表,它提供了共同的标识符公开已知的网络安全漏洞。
CVE使用关键字搜索: 你也可以搜索参考使用CVE参考地图。
更多信息:CVE请求Web表单(从下拉框中选择“其他”)

回到顶部

cve - 2016 - 2177