Vulnerability in OpenSSL (CVE-2014-0221)

ID OPENSSL:CVE-2014-0221
Type openssl
Reporter OpenSSL
Modified 2014-06-05T00:00:00


By sending an invalid DTLS handshake to an OpenSSL DTLS client the code can be made to recurse eventually crashing in a DoS attack. Only applications using OpenSSL as a DTLS client are affected. Reported by Imre Rad (Search-Lab Ltd.).