Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-0112HistoryNov 23, 2004 - 5:00 a.m.
CVE-2004-0112
2004-11-2305:00:00
Debian Security Bug Tracker
security-tracker.debian.org
14
0.002 Low
EPSS
Percentile
64.5%
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | <Â 0.9.7d-1 | openssl_0.9.7d-1_all.deb |
| Debian | 11 | all | openssl | <Â 0.9.7d-1 | openssl_0.9.7d-1_all.deb |
| Debian | 10 | all | openssl | <Â 0.9.7d-1 | openssl_0.9.7d-1_all.deb |
| Debian | 999 | all | openssl | <Â 0.9.7d-1 | openssl_0.9.7d-1_all.deb |
| Debian | 13 | all | openssl | <Â 0.9.7d-1 | openssl_0.9.7d-1_all.deb |
Related
openssl
openssl
Vulnerability in OpenSSL CVE-2004-0112
2004-03-17 00:00:00
openvas
openvas
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Linux
2021-08-13 00:00:00
OpenSSL: DoS Vulnerability (CVE-2004-0112) - Windows
2021-08-13 00:00:00
Slackware: Security Advisory (SSA:2004-077-01)
2012-09-10 00:00:00
cvelist
cvelist
CVE-2004-0112
2004-03-18 05:00:00
CVE-2005-1730
2007-03-03 23:00:00
cve
cve
CVE-2004-0112
2004-11-23 05:00:00
CVE-2005-1730
2005-12-31 05:00:00
cert
cert
OpenSSL does not adequately validate length of Kerberos ticket during SSL/TLS handshake
2004-03-17 00:00:00
OpenSSL does not properly handle unknown message types
2004-03-17 00:00:00
OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-17 00:00:00
nessus
nessus
SuSE-SA:2004:007: openssl
2004-07-25 00:00:00
Mandrake Linux Security Advisory : openssl (MDKSA-2004:023)
2004-07-31 00:00:00
slackware
slackware
OpenSSL security update
2004-03-17 17:34:04
securityvulns
securityvulns
OpenSSL Security Advisory [17 March 2004]
2004-03-17 00:00:00
redhat
redhat
(RHSA-2004:120) openssl security update
2004-05-21 00:00:00
cisco
cisco
Cisco OpenSSL Implementation Vulnerability
2004-03-17 13:00:00
gentoo
gentoo
Multiple OpenSSL Vulnerabilities
2004-03-17 00:00:00
f5
f5
suse
suse
remote denial-of-service in openssl
2004-03-17 13:37:40
redhatcve
redhatcve
CVE-2005-1730
2015-10-30 10:15:31
oraclelinux
oraclelinux
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2019-03-13 00:00:00
openssl security update
2019-08-16 00:00:00