31 matches found
K15355: OpenSSL DTLS Buffer vulnerability CVE-2009-1379
Security Advisory Description Use-after-free vulnerability in the dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service openssl sclient crash and possibly have unspecified other impact via a DTLS packet, as demonstrated...
Oracle: Security Advisory (ELSA-2009-1335)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SOL15355 - OpenSSL DTLS Buffer vulnerability CVE-2009-1379
Recommended action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. Supplemental...
RHEL 5 : openssl (RHSA-2009:1335)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:1335 advisory. - openssl: mimehdrcmp NULL dereference crash CVE-2006-7250 - openssl: ASN1 printing crash CVE-2009-0590 - OpenSSL: DTLS epoch record buffer...
Fedora Update for openssl FEDORA-2010-9421
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updates
a. Service Console update for COS kernel Updated COS package 'kernel' addresses the security issues that are fixed through versions 2.6.18-164.11.1. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286,...
[security bulletin] HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02029444 Version: 1 HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage SMH for Linux and Windows, Remote Cross Site Scripting XSS, Denial of Service DoS, Execution of Arbitrary Code,...
Fedora Update for openssl FEDORA-2010-5357
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Security fix for the ALT Linux 8 package openssl10 version 0.9.8m-alt1
Feb. 26, 2010 Evgeny Sinelnikov 0.9.8m-alt1 - Updated to 0.9.8m with security fixes and improvements, including: + CVE-2009-3245, CVE-2008-1678 + CVE-2009-1377, CVE-2009-1378, CVE-2009-1379 + CVE-2009-1387 closes: 20280 + CVE-2009-4355 closes: 22817, 23037 + patch for Cisco VPN client DTLS...
Security fix for the ALT Linux 6 package openssl10 version 0.9.8m-alt1
Feb. 26, 2010 Evgeny Sinelnikov 0.9.8m-alt1 - Updated to 0.9.8m with security fixes and improvements, including: + CVE-2009-3245, CVE-2008-1678 + CVE-2009-1377, CVE-2009-1378, CVE-2009-1379 + CVE-2009-1387 closes: 20280 + CVE-2009-4355 closes: 22817, 23037 + patch for Cisco VPN client DTLS...
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8m-alt1
Feb. 26, 2010 Evgeny Sinelnikov 0.9.8m-alt1 - Updated to 0.9.8m with security fixes and improvements, including: + CVE-2009-3245, CVE-2008-1678 + CVE-2009-1377, CVE-2009-1378, CVE-2009-1379 + CVE-2009-1387 closes: 20280 + CVE-2009-4355 closes: 22817, 23037 + patch for Cisco VPN client DTLS...
Security fix for the ALT Linux 9 package openssl10 version 0.9.8m-alt1
Feb. 26, 2010 Evgeny Sinelnikov 0.9.8m-alt1 - Updated to 0.9.8m with security fixes and improvements, including: + CVE-2009-3245, CVE-2008-1678 + CVE-2009-1377, CVE-2009-1378, CVE-2009-1379 + CVE-2009-1387 closes: 20280 + CVE-2009-4355 closes: 22817, 23037 + patch for Cisco VPN client DTLS...
Gentoo Security Advisory GLSA 200912-01 (openssl)
The remote host is missing updates announced in advisory GLSA 200912-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Mandrake Security Advisory MDVSA-2009:238 (openssl)
The remote host is missing an update to openssl announced via advisory MDVSA-2009:238. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 6267)
Three remote DoS vulnerabilities have been fixed in OpenSSL: a DTLS epoch record buffer memory DoS CVE-2009-1377, a DTLS fragment handling memory DoS CVE-2009-1378 and a DTLS fragment read after a free DoS. CVE-2009-1379 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of...
CentOS Security Advisory CESA-2009:1335 (openssl)
The remote host is missing updates to openssl announced in advisory CESA-2009:1335. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
DSA-1888-1 openssl - cryptographic weakness
Bulletin has no description...
openSUSE Security Update : libopenssl-devel (libopenssl-devel-907)
Three remote DoS vulnerabilities have been fixed in OpenSSL: a DTLS epoch record buffer memory DoS CVE-2009-1377, a DTLS fragment handling memory DoS CVE-2009-1378 and a DTLS fragment read after a free DoS CVE-2009-1379. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : openssl vulnerabilities (USN-792-1)
It was discovered that OpenSSL did not limit the number of DTLS records it would buffer when they arrived with a future epoch. A remote attacker could cause a denial of service via memory resource consumption by sending a large number of crafted requests. CVE-2009-1377 It was discovered that...
Fedora Core 9 FEDORA-2009-5423 (openssl)
The remote host is missing an update to openssl announced via advisory FEDORA-2009-5423. OpenVAS Vulnerability Test $Id: fcore20095423.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5423 openssl Authors: Thomas Reinke Copyright: Copyright c 2009...