Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-3512HistoryAug 13, 2014 - 11:55 p.m.
CVE-2014-3512
2014-08-1323:55:00
Debian Security Bug Tracker
security-tracker.debian.org
9
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.926 High
EPSS
Percentile
99.0%
Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssl | < 1.0.1i-1 | openssl_1.0.1i-1_all.deb |
| Debian | 11 | all | openssl | < 1.0.1i-1 | openssl_1.0.1i-1_all.deb |
| Debian | 10 | all | openssl | < 1.0.1i-1 | openssl_1.0.1i-1_all.deb |
| Debian | 999 | all | openssl | < 1.0.1i-1 | openssl_1.0.1i-1_all.deb |
| Debian | 13 | all | openssl | < 1.0.1i-1 | openssl_1.0.1i-1_all.deb |
Related
checkpoint_advisories
checkpoint_advisories
OpenSSL Multiple Invalid SRP Parameters Buffer Overflow (CVE-2014-3512)
2014-12-25 00:00:00
prion
prion
Buffer overflow
2014-08-13 23:55:00
f5
f5
SOL15565 - OpenSSL vulnerability CVE-2014-3512
2014-09-04 00:00:00
K15565 : OpenSSL vulnerability CVE-2014-3512
2014-09-05 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2014-3512
2014-08-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2017-02-07 00:49:39
ubuntucve
ubuntucve
CVE-2014-3512
2014-08-07 00:00:00
cve
cve
CVE-2014-3512
2014-08-13 23:55:00
ibm
ibm
openvas
openvas
OpenSSL Multiple Vulnerabilities (20140806 - 2) - Linux
2021-07-19 00:00:00
OpenSSL Multiple Vulnerabilities (20140806 - 2) - Windows
2021-07-19 00:00:00
Mageia: Security Advisory (MGASA-2014-0325)
2022-01-28 00:00:00
nessus
nessus
Juniper Junos Multiple OpenSSL Vulnerabilities (JSA10649)
2014-10-14 00:00:00
Oracle Solaris Third-Party Patch Update : openssl (cve_2014_3505_denial_of)
2015-01-19 00:00:00
OpenSSL < 0.9.8zb / < 1.0.0n / < 1.0.1i Multiple Vulnerabilities
2014-08-15 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:18.openssl
2014-09-09 00:00:00
slackware
slackware
[slackware-security] openssl
2014-08-08 21:22:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2014-08-07 00:00:00
huawei
huawei
Security Advisory-9 OpenSSL vulnerabilities on Huawei products
2014-10-08 00:00:00
osv
osv
openssl - security update
2014-08-07 00:00:00
debian
debian
[SECURITY] [DSA 2998-1] openssl security update
2014-08-06 23:45:18
amazon
amazon
Medium: openssl
2014-08-07 12:26:00
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2014-08-06 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerabilities
2014-08-12 13:16:46
aix
aix
AIX OpenSSL Denial of Service due to double free and others
2014-09-09 00:50:00
kaspersky
kaspersky
KLA10343 Multiple vulnerabilities in Stunnel
2014-08-07 00:00:00
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2014-08-07 00:00:00
ESA-2015-002: Unisphere Central Security Update for Multiple Vulnerabilities
2015-02-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package openssl10 version 1.0.1j-alt1
2014-10-30 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.1j-alt1
2014-10-30 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2014-12-26 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.926 High
EPSS
Percentile
99.0%
Related for DEBIANCVE:CVE-2014-3512