CVE-2014-3513

Опубликовано: 19 окт. 2014

Источник: ubuntu

Приоритет: medium

CVSS2: 7.1

Описание

Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.

Релиз	Статус	Примечание
devel	released	1.0.1f-1ubuntu9
esm-infra-legacy/trusty	released	1.0.1f-1ubuntu2.7
lucid	not-affected	0.9.8k-7ubuntu8.21
precise	released	1.0.1-4ubuntu5.20
trusty	released	1.0.1f-1ubuntu2.7
trusty/esm	released	1.0.1f-1ubuntu2.7
upstream	released	1.0.1j

Показывать по

Релиз	Статус	Примечание
devel	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected]
lucid	DNE
precise	not-affected
trusty	not-affected
trusty/esm	DNE	trusty was not-affected
upstream	needs-triage

Показывать по

Ссылки на источники

7.1 High

CVSS2

Связанные уязвимости

CVE-2014-3513

redhat

около 11 лет назад

Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.

CVE-2014-3513

nvd

около 11 лет назад

Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.

CVE-2014-3513

debian

около 11 лет назад

Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 b ...

GHSA-mxph-x9r8-xwgr

github

больше 3 лет назад

Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.

BDU:2015-00653

fstec

около 11 лет назад

Уязвимость программного обеспечения OpenSSL, позволяющая удаленному злоумышленнику нарушить конфиденциальность и доступность защищаемой информации

7.1 High

CVSS2

CVE-2014-3513

Описание

Пакет openssl

Пакет openssl098

Ссылки на источники

Связанные уязвимости