Vulnerability in OpenSSL (CVE-2015-0206)

ID OPENSSL:CVE-2015-0206
Type openssl
Reporter OpenSSL
Modified 2015-01-08T00:00:00


A memory leak can occur in the dtls1_buffer_record function under certain conditions. In particular this could occur if an attacker sent repeated DTLS records with the same sequence number but for the next epoch. The memory leak could be exploited by an attacker in a Denial of Service attack through memory exhaustion. Reported by Chris Mueller.