5 matches found
SUSE CVE-2014-3513
Memory leak in d1srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service memory consumption via a crafted handshake message...
The vulnerability of the OpenSSL software allows a malicious attacker to compromise the confidentiality and accessibility of protected information.
A memory leak in the d1srtp.c file of the DTLS SRTP extension in OpenSSL allows malicious actors operating remotely to trigger a service failure excessive memory consumption through specially crafted negotiation messages...
LibreSSL Double Release Vulnerability
LibreSSL is a fork of the OpenSSL cryptographic software library developed by the OpenBSD project and an open source implementation of the Secure Sockets Layer SSL and Transport Layer Security TLS protocols. A double-release vulnerability exists in the 'sslparseclienthellousesrtpext' function in...
Important: openssl
Issue Overview: A memory leak flaw was found in the way OpenSSL parsed the DTLS Secure Real-time Transport Protocol SRTP extension data. A remote attacker could send multiple specially crafted handshake messages to exhaust all available memory of an SSL/TLS or DTLS server. CVE-2014-3513 A memory...
UBUNTU-CVE-2014-3513
Memory leak in d1srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service memory consumption via a crafted handshake message...