Уязвимость CVE-2010-3864

Релиз	Статус	Примечание
dapper	not-affected
devel	released	0.9.8o-3ubuntu1
hardy	released	0.9.8g-4ubuntu3.12
karmic	released	0.9.8g-16ubuntu3.4
lucid	released	0.9.8k-7ubuntu8.4
maverick	released	0.9.8o-1ubuntu4.2
upstream	needs-triage

CVE-2010-3864

redhat

больше 14 лет назад

Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.

CVE-2010-3864

nvd

больше 14 лет назад

Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.

CVE-2010-3864

debian

больше 14 лет назад

Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9 ...

GHSA-rvq6-rpm5-73fg

github

около 3 лет назад

Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to (1) the TLS server name extension and (2) elliptic curve cryptography.

BDU:2015-01468

fstec

больше 10 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

exploitDog

CVE-2010-3864

Описание

Ссылки на источники

Связанные уязвимости

CVE-2010-3864

Описание

Пакет openssl

Ссылки на источники

Связанные уязвимости