Back to bug 1311880
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Huzaifa S. Sidhpurwala | 2016-02-25 09:23:19 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-02-25 09:23:19 UTC | Doc Type | --- | Bug Fix |
| Huzaifa S. Sidhpurwala | 2016-02-25 09:23:30 UTC | Blocks | 1301847 | |
| Huzaifa S. Sidhpurwala | 2016-02-26 07:45:16 UTC | Depends On | 1301848 | |
| Huzaifa S. Sidhpurwala | 2016-02-26 07:50:31 UTC | Depends On | 1301849 | |
| Huzaifa S. Sidhpurwala | 2016-02-26 07:51:07 UTC | Depends On | 1301851 | |
| Ondrej Moriš | 2016-02-26 21:38:29 UTC | CC | omoris | |
| Huzaifa S. Sidhpurwala | 2016-02-29 08:32:33 UTC | Doc Text | A flaw was found in the way some BIGNUM functions of OpenSSL were implemented. User applications which use these functions with large untrusted, could crash with null pointer dereference. | |
| Martin Prpič | 2016-02-29 12:12:41 UTC | Whiteboard | impact=low,public=no,reported=20160225,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected | impact=low,public=no,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected |
| Martin Prpič | 2016-02-29 13:21:23 UTC | Doc Text | A flaw was found in the way some BIGNUM functions of OpenSSL were implemented. User applications which use these functions with large untrusted, could crash with null pointer dereference. | An integer overflow flaw, leading to a NULL pointer dereference or a heap-based memory corruption, was found in the way some BIGNUM functions of OpenSSL were implemented. Applications that use these functions with large untrusted input could crash or, potentially, execute arbitrary code. |
| Huzaifa S. Sidhpurwala | 2016-03-01 09:05:26 UTC | Whiteboard | impact=low,public=no,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected |
| Huzaifa S. Sidhpurwala | 2016-03-01 14:21:08 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2016-0797 OpenSSL: BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption | CVE-2016-0797 OpenSSL: BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption | ||
| Norman Sardella | 2016-03-01 15:29:59 UTC | CC | sardella | |
| Kurt Seifried | 2016-03-01 20:14:41 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected |
| Kurt Seifried | 2016-03-01 20:14:48 UTC | CC | alonbl, bmcclain, dblechte, fdeutsch, gklein, lsurette, mgoldboi, michal.skrivanek, pstehlik, sherold, ycui, ydary, yeylon, ykaul | |
| Kurt Seifried | 2016-03-01 20:16:44 UTC | Depends On | 1313535 | |
| Tomas Hoger | 2016-03-01 22:56:39 UTC | Fixed In Version | openssl 1.0.1s, openssl 1.0.2g | |
| Kurt Seifried | 2016-03-02 01:11:48 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected |
| Kurt Seifried | 2016-03-02 01:11:55 UTC | CC | jgregusk | |
| Kurt Seifried | 2016-03-02 01:18:53 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected |
| Kurt Seifried | 2016-03-02 01:26:42 UTC | Depends On | 1313595 | |
| Kurt Seifried | 2016-03-02 01:28:24 UTC | Depends On | 1313598 | |
| Huzaifa S. Sidhpurwala | 2016-03-02 05:10:15 UTC | Depends On | 1301850 | |
| Huzaifa S. Sidhpurwala | 2016-03-02 05:10:22 UTC | Depends On | 1301852 | |
| Slawomir Czarko | 2016-03-02 07:48:00 UTC | CC | slawomir | |
| John Skeoch | 2016-04-18 07:36:40 UTC | CC | yeylon | srevivo |
| Timothy Walsh | 2016-04-29 12:44:22 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,jbews-3/openssl=affected |
| Timothy Walsh | 2016-04-29 12:44:32 UTC | CC | csutherl, dknox, jclere, jdoyle, lgao, mbabacek, myarboro, twalsh, weli | |
| Timothy Walsh | 2016-04-29 12:46:43 UTC | Depends On | 1331755 | |
| Timothy Walsh | 2016-09-06 04:42:38 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,jbews-3/openssl=affected | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,eap-6/openssl=notaffected,jbews-2/openssl=notaffected,jbews-3/openssl=affected |
| Timothy Walsh | 2016-09-06 04:42:53 UTC | CC | bbaranow, bmaxwell, cdewolf, dandread, darran.lofthouse, dosoudil, gzaronik, jawilson, pgier, psakar, pslavice, rnetuka, rsvoboda, vtunka | |
| Timothy Walsh | 2017-01-19 06:55:25 UTC | Blocks | 1395463 | |
| Scott Herold | 2017-09-12 15:37:12 UTC | CC | sherold | |
| PnT Account Manager | 2018-11-05 22:43:00 UTC | CC | ylavi | |
| Gil Klein | 2019-04-14 12:57:13 UTC | CC | gklein | |
| Product Security DevOps Team | 2019-06-08 02:48:50 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:48:50 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:45:06 UTC | Whiteboard | impact=low,public=20160301,reported=20160226,source=upstream,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhev-m-3/rhev-hypervisor=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected,eap-6/openssl=notaffected,jbews-2/openssl=notaffected,jbews-3/openssl=affected |
Back to bug 1311880