Описание
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.9.8a-7ubuntu0.9 |
| devel | released | 0.9.8g-16ubuntu2 |
| hardy | released | 0.9.8g-4ubuntu3.7 |
| intrepid | released | 0.9.8g-10.1ubuntu2.4 |
| jaunty | released | 0.9.8g-15ubuntu3.2 |
| upstream | released | 0.9.8i |
Показывать по
5 Medium
CVSS2
Связанные уязвимости
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause ...
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
ELSA-2009-1335: openssl security, bug fix, and enhancement update (MODERATE)
5 Medium
CVSS2