[go: up one dir, main page]
|
|
Log in / Subscribe / Register

openssl: three vulnerabilities

Package(s):openssl CVE #(s):CVE-2014-0195 CVE-2014-0221 CVE-2014-3470
Created:June 5, 2014 Updated:August 14, 2014
Description: From the Red Hat advisory:

A buffer overflow flaw was found in the way OpenSSL handled invalid DTLS packet fragments. A remote attacker could possibly use this flaw to execute arbitrary code on a DTLS client or server. (CVE-2014-0195)

A denial of service flaw was found in the way OpenSSL handled certain DTLS ServerHello requests. A specially crafted DTLS handshake packet could cause a DTLS client using OpenSSL to crash. (CVE-2014-0221)

A NULL pointer dereference flaw was found in the way OpenSSL performed anonymous Elliptic Curve Diffie Hellman (ECDH) key exchange. A specially crafted handshake packet could cause a TLS/SSL client that has the anonymous ECDH cipher suite enabled to crash. (CVE-2014-3470)

Alerts:
openSUSE openSUSE-SU-2016:0640-1 libopenssl0_9_8 2016-03-03
SUSE SUSE-SU-2015:0743-1 mariadb 2015-04-21
Mandriva MDVSA-2015:062 openssl 2015-03-27
SUSE SUSE-SU-2015:0578-1 compat-openssl097g 2015-03-24
Fedora FEDORA-2014-17576 mingw-openssl 2015-01-02
Fedora FEDORA-2014-17587 mingw-openssl 2015-01-02
Oracle ELSA-2014-1653 openssl 2014-10-16
Oracle ELSA-2014-1652 openssl 2014-10-16
Ubuntu USN-2232-4 openssl 2014-08-18
Scientific Linux SLSA-2014:1053-1 openssl 2014-08-14
Oracle ELSA-2014-1053 openssl 2014-08-13
CentOS CESA-2014:1053 openssl 2014-08-13
Red Hat RHSA-2014:1053-01 openssl 2014-08-13
Gentoo 201407-05 openssl 2014-07-28
Oracle ELSA-2014-0679 openssl 2014-07-23
Ubuntu USN-2232-2 openssl 2014-06-12
Debian DSA-2950-2 openssl 2014-06-16
Red Hat RHSA-2014:0679-01 openssl 2014-06-10
Mandriva MDVSA-2014:105 openssl 2014-06-09
SUSE SUSE-SU-2014:0759-2 OpenSSL 2014-06-07
SUSE SUSE-SU-2014:0762-1 OpenSSL 1.0 2014-06-06
SUSE SUSE-SU-2014:0761-1 OpenSSL 2014-06-06
SUSE SUSE-SU-2014:0759-1 OpenSSL 2014-06-06
Slackware SSA:2014-156-03 openssl 2014-06-05
Scientific Linux SLSA-2014:0625-1 openssl 2014-06-05
Oracle ELSA-2014-0625 openssl 2014-06-05
openSUSE openSUSE-SU-2014:0765-1 openssl 2014-06-06
Mageia MGASA-2014-0255 openssl 2014-06-06
Fedora FEDORA-2014-7102 openssl 2014-06-05
Fedora FEDORA-2014-7101 openssl 2014-06-05
Ubuntu USN-2232-1 openssl 2014-06-05
Debian DSA-2950-1 openssl 2014-06-05
CentOS CESA-2014:0625 openssl 2014-06-05
Red Hat RHSA-2014:0625-01 openssl 2014-06-05
Mandriva MDVSA-2014:106 openssl 2014-06-09
openSUSE openSUSE-SU-2014:0764-1 openssl 2014-06-06
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds