445
VMScore

CVE-2015-0206

Published: 09/01/2015 Updated: 20/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 prior to 1.0.0p and 1.0.1 prior to 1.0.1k allows remote malicious users to cause a denial of service (memory consumption) by sending many duplicate records for the next epoch, leading to failure of replay detection.

Vendor Advisories

Synopsis Moderate: openssl security update Type/Severity Security Advisory: Moderate Topic Updated openssl packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 6 and 7Red Hat Product Security has rated this update as having Moderate securityimpact Common Vulnerability S ...
A memory leak flaw was found in the way the dtls1_buffer_record() function of OpenSSL parsed certain DTLS messages A remote attacker could send multiple specially crafted DTLS messages to exhaust all available memory of a DTLS server ...
Several security issues were fixed in OpenSSL ...
Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2014-3569 Frank Schmirler reported that the ssl23_get_client_hello function in OpenSSL does not properly handle attempts to use unsupported protocols When OpenS ...
Nessus, SecurityCenter, and the Tenable Appliance use OpenSSL, which recently disclosed several vulnerabilities OpenSSL contains a flaw in the dtls1_buffer_record() function that is triggered when handling a saturation of DTLS records that contain the same sequence number, but for the next epoch This may allow a remote attacker to cause a memory ...
OpenSSL before 098zd, 100 before 100p, and 101 before 101k allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DTLS message that is processed with a different read operation for the handshake header than for the handshake body, related to the dtls1_get_record function in d1_p ...
Blue Coat products using affected versions of OpenSSL 101, 100, and 098 are vulnerable to one or more vulnerabilities  A remote attacker may exploit these vulnerabilities to cause a downgrade of the security of the session, a loss of forward secrecy, a crash, or a denial of service due to memory consumption ...
Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service condition or perform a man-in-the-middle attack On January 8, 2015, the OpenSSL Project released a security advisory detailing eight distinct vulnerabilities ...
Oracle Critical Patch Update Advisory - April 2015 Description A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory Thus, prior Critical Patch ...
Table of Contents• Description • Affected Products and Components • Vulnerability Descriptions • Splunk Enterprise response to January 2015 OpenSSL vulnerabilities • Hunk response to January 2015 OpenSSL vulnerabilities • Splunk Cloud response to January 2015 OpenSSL vulnerabilities • Splunk MINT response to January 2015 OpenSSL vulne ...

Recent Articles

Post-POODLE, OpenSSL shakes off some fleas
The Register • Darren Pauli • 09 Jan 2015

New fixes repair DOS, authentication flaws

OpenSSL has squashed eight low severity vulnerabilities bugs that could result in denial of service or the removal of forward secrecy.
The holes, two graded "moderate", were addressed in OpenSSL updates 1.0.0p, 0.98zd, and 1.0.1k.
Maintainers wrote in an advisory that Cisco warned last October that a crafted Datagram Transport Layer Security (DTLS) message could trigger a segmentation fault due (CVE-2014-3571) to a NULL pointer dereference.
Another bug (CVE-2015-0206) spotted b...

References

CWE-119http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147938.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-January/148363.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.htmlhttp://marc.info/?l=bugtraq&m=142721102728110&w=2http://marc.info/?l=bugtraq&m=143748090628601&w=2http://marc.info/?l=bugtraq&m=144050155601375&w=2http://marc.info/?l=bugtraq&m=144050205101530&w=2http://marc.info/?l=bugtraq&m=144050254401665&w=2http://marc.info/?l=bugtraq&m=144050297101809&w=2http://rhn.redhat.com/errata/RHSA-2015-0066.htmlhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-sslhttp://www.debian.org/security/2015/dsa-3125http://www.mandriva.com/security/advisories?name=MDVSA-2015:019http://www.mandriva.com/security/advisories?name=MDVSA-2015:062http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.htmlhttp://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.htmlhttp://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlhttp://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.htmlhttp://www.securityfocus.com/bid/71940http://www.securityfocus.com/bid/91787http://www.securitytracker.com/id/1033378https://bto.bluecoat.com/security-advisory/sa88https://exchange.xforce.ibmcloud.com/vulnerabilities/99704https://github.com/openssl/openssl/commit/103b171d8fc282ef435f8de9afbf7782e312961fhttps://kc.mcafee.com/corporate/index?page=content&id=SB10102https://kc.mcafee.com/corporate/index?page=content&id=SB10108https://www.openssl.org/news/secadv_20150108.txthttps://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2015:0066https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2015-0206https://usn.ubuntu.com/2459-1/https://www.rapid7.com/db/vulnerabilities/aix-6.1-openssl_advisory12_cve-2015-0206