Количество 10
Количество 10
GHSA-qwvg-rfmc-974p
The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.
CVE-2014-8176
The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.
CVE-2014-8176
The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.
CVE-2014-8176
The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.
CVE-2014-8176
The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9. ...
BDU:2022-02639
Уязвимость функции dtls1_clear_queues библиотеки OpenSSL, позволяющая нарушителю вызвать отказ в обслуживании или, возможно, оказать другое воздействие
ELSA-2015-1115
ELSA-2015-1115: openssl security update (MODERATE)
SUSE-SU-2015:1185-1
Security update for openssl1
SUSE-SU-2015:0546-1
Security update for openssl1
SUSE-RU-2015:0769-1
Security update for openssl1
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-qwvg-rfmc-974p The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data. | 25% Средний | больше 3 лет назад | |
 | CVE-2014-8176 The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data. | CVSS2: 7.5 | 25% Средний | больше 10 лет назад |
 | CVE-2014-8176 The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data. | CVSS3: 7.5 | 25% Средний | больше 10 лет назад |
 | CVE-2014-8176 The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data. | CVSS2: 7.5 | 25% Средний | больше 10 лет назад |
| CVE-2014-8176 The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9. ... | CVSS2: 7.5 | 25% Средний | больше 10 лет назад |
 | BDU:2022-02639 Уязвимость функции dtls1_clear_queues библиотеки OpenSSL, позволяющая нарушителю вызвать отказ в обслуживании или, возможно, оказать другое воздействие | CVSS3: 7.3 | 25% Средний | больше 10 лет назад |
| ELSA-2015-1115 ELSA-2015-1115: openssl security update (MODERATE) | больше 10 лет назад | ||
 | SUSE-SU-2015:1185-1 Security update for openssl1 | около 11 лет назад | ||
| SUSE-SU-2015:0546-1 Security update for openssl1 | около 11 лет назад | ||
| SUSE-RU-2015:0769-1 Security update for openssl1 | около 11 лет назад |
Уязвимостей на страницу