Lucene search
K

169 matches found

OSV
OSV
added 2015/01/12 5:40 p.m.14 views

USN-2459-1 openssl vulnerabilities

Pieter Wuille discovered that OpenSSL incorrectly handled Bignum squaring. CVE-2014-3570 Markus Stenberg discovered that OpenSSL incorrectly handled certain crafted DTLS messages. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service. CVE-2014-3571...

5CVSS7AI score0.98685EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2015/01/12 5:40 p.m.73 views

USN-2459-1: OpenSSL vulnerabilities

Pieter Wuille discovered that OpenSSL incorrectly handled Bignum squaring. CVE-2014-3570 Markus Stenberg discovered that OpenSSL incorrectly handled certain crafted DTLS messages. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service. CVE-2014-3571...

5CVSS7.5AI score0.98685EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/12 12:0 a.m.60 views

Mandriva Linux Security Advisory : openssl (MDVSA-2015:019)

Multiple vulnerabilities has been discovered and corrected in openssl : A carefully crafted DTLS message can cause a segmentation fault in OpenSSL due to a NULL pointer dereference. This could lead to a Denial Of Service attack CVE-2014-3571. A memory leak can occur in the dtls1bufferrecord...

5CVSS7.4AI score0.98685EPSS
Exploits0References9
Mageia
Mageia
added 2015/01/11 7:54 p.m.63 views

Updated openssl packages fix security vulnerabilities

A carefully crafted DTLS message can cause a segmentation fault in OpenSSL due to a NULL pointer dereference. This could lead to a Denial Of Service attack CVE-2014-3571. A memory leak can occur in the dtls1bufferrecord function under certain conditions. In particular this could occur if an...

5CVSS7.1AI score0.98685EPSS
Exploits0References3
Debian
Debian
added 2015/01/11 1:16 p.m.70 views

[SECURITY] [DLA 132-1] openssl security update

Package : openssl Version : 0.9.8o-4squeeze19 CVE ID : CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-8275 CVE-2015-0204 Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit. The Common Vulnerabilities and Exposures project identifies the following issues:...

5CVSS7AI score0.98685EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/09 12:0 a.m.93 views

OpenSSL < 1.0.1k / < 1.0.0p / < 0.9.8zd Multiple Vulnerabilities

Binary data 8617.prm...

5CVSS6.7AI score0.98685EPSS
Exploits0References9
ArchLinux
ArchLinux
added 2015/01/09 12:0 a.m.88 views

openssl: multiple issues

CVE-2014-3571 denial of service A remote attacker is able to cause a denial of service NULL pointer dereference and application crash via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1getrecord...

5CVSS2.9AI score0.98685EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2015/01/09 12:0 a.m.36 views

FreeBSD : OpenSSL -- multiple vulnerabilities (4e536c14-9791-11e4-977d-d050992ecde8) (FREAK)

OpenSSL project reports : DTLS segmentation fault in dtls1getrecord CVE-2014-3571 DTLS memory leak in dtls1bufferrecord CVE-2015-0206 no-ssl3 configuration sets method to NULL CVE-2014-3569 ECDHE silently downgrades to ECDH Client CVE-2014-3572 RSA silently downgrades to EXPORTRSA Client...

5CVSS7.4AI score0.98685EPSS
Exploits0References10
OpenSSL
OpenSSL
added 2015/01/08 12:0 a.m.73 views

Vulnerability in OpenSSL - Bignum squaring may produce incorrect results

Bignum squaring BNsqr may produce incorrect results on some platforms, including x8664. This bug occurs at random with a very low probability, and is not known to be exploitable in any way, though its exact impact is difficult to determine. The following has been determined: The probability of...

6AI score0.2132EPSS
Exploits0Affected Software1
Rows per page
Query Builder