CVE-2015-2987

Name
CVE-2015-2987
Description
Type74 ED before 4.0 misuses 128-bit ECB encryption for small files, which makes it easier for attackers to obtain plaintext data via differential cryptanalysis of a file with an original length smaller than 128 bits.
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Vendor Advisory http://jvn.jp/en/jp/JVN91474878/index.html
Vendor Advisory http://jvndb.jvn.jp/jvndb/JVNDB-2015-000119
Patch http://type74.org/edman5-1.php
Vendor Advisory http://type74org.blog14.fc2.com/blog-entry-1384.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:type74:ed:*:*:*:*:*:*:*:* ed >= None <= 3.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
ed edge-main 1.17-r0 None fixed
ed 3.14-main 1.17-r0 None fixed
ed 3.13-main 1.17-r0 None fixed
ed 3.12-main 1.16-r0 Breno Leitao <breno.leitao@gmail.com> fixed
ed 3.11-main 1.15-r0 Breno Leitao <breno.leitao@gmail.com> fixed