Published: 12/06/2015 Updated: 13/12/2022

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL prior to 0.9.8za, 1.0.0 prior to 1.0.0m, and 1.0.1 prior to 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openssl openssl 1.0.1
openssl openssl 1.0.0c
openssl openssl 1.0.0i
openssl openssl 1.0.0
openssl openssl 1.0.1c
openssl openssl 1.0.1g
openssl openssl 1.0.0h
openssl openssl 1.0.0e
openssl openssl 1.0.0f
openssl openssl 1.0.0d
openssl openssl 1.0.0j
openssl openssl 1.0.1a
openssl openssl 1.0.1d
openssl openssl 1.0.0k
openssl openssl 1.0.1b
openssl openssl 1.0.1e
openssl openssl 1.0.1f
openssl openssl 1.0.0l
openssl openssl
openssl openssl 1.0.0a
openssl openssl 1.0.0b
openssl openssl 1.0.0g

Synopsis Important: Red Hat JBoss Core Services Apache HTTP 2423 Release Type/Severity Security Advisory: Important Topic Red Hat JBoss Core Services httpd 2423 is now available from the Red Hat Customer Portal for Solaris and Microsoft Windows systemsRed Hat Product Security has rated this release as ...

Several security issues were fixed in OpenSSL ...

LOGJAM: A flaw was found in the way the TLS protocol composes the Diffie-Hellman exchange (for both export and non-export grade cipher suites) An attacker could use this flaw to downgrade a DHE connection to use export-grade key sizes, which could then be broken by sufficient pre-computation This can lead to a passive man-in-the-middle attack in ...

An invalid-free flaw was found in the way OpenSSL handled certain DTLS handshake messages A malicious DTLS client or server could send a specially crafted message to the peer, which could cause the application to crash or potentially result in arbitrary code execution ...

On June 11, 2015, the OpenSSL Project released a security advisory detailing six distinct vulnerabilities, and another fix that provides hardening protections against exploits as described in the Logjam research Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities that could allow an unauthe ...

Nessus and SecurityCenter are potentially impacted by several vulnerabilities in OpenSSL that were recently disclosed and fixed Note that due to the time involved in doing a full analysis of each issue, Tenable has opted to patch the included version of OpenSSL as a precaution, and to save time CVE-2015-1788 - OpenSSL crypto/bn/bn_gf2mc BN_GF2m ...

ECE1552 # CVE-2014-8176 Priority: High Link: security-trackerdebianorg/tracker/CVE-2014-8176 Description: The dtls1_clear_queues function in ssl/d1_libc in OpenSSL before 098za, 100 before 100m, and 101 before 101h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which all

HPE rushes out patch for more than a year of OpenSSL vulns

The Register • Richard Chirgwin • 06 Jul 2016

Logjam in patch pipeline cleared at last

HP Enterprise has popped into its Tardis, and gone back in time to patch OpenSSL bugs dating back to 2014 – including the infamous Logjam bug. The bugs are in various network products: Intelligent Management Center (iMC), the VCX unified communications products, and the Comware network operating system. The company's notice cites Common Vulnerability and Exposure (CVE) advisories CVE-2014-8176, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792, and CVE-2015-1793. Most o...

CVE-2014-8176

Vulnerability Summary

Vendor Advisories

ICS Advisories

Github Repositories

Recent Articles

References

Vulmon Search

About

Products

Connect