Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Mageia Linux Local Security Checks
Title:Mageia Linux Local Check: mgasa-2015-0274
Summary:Mageia Linux Local Security Checks mgasa-2015-0274
Mageia Linux Local Security Checks mgasa-2015-0274

Vulnerability Insight:
During certificate verification, OpenSSL (starting from version 1.0.1n and 1.0.2b) will attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them to use a valid leaf certificate to act as a CA and issue an invalid certificate (CVE-2015-1793).

Update the affected packages to the latest available version.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-1793
BugTraq ID: 75652
BugTraq ID: 91787
Cisco Security Advisory: 20150710 OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
FreeBSD Security Advisory: FreeBSD-SA-15:12
HPdes Security Advisory: HPSBGN03424
HPdes Security Advisory: HPSBUX03388
HPdes Security Advisory: SSRT102180
NETBSD Security Advisory: NetBSD-SA2015-008
CopyrightCopyright (C) 2015 Eero Volotinen

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.