[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97389

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2016-749 ---- openssl

ID: oval:org.secpod.oval:def:1600452Date: (C)2016-09-23   (M)2017-11-15
Class: PATCHFamily: unix




A memory leak flaw was found in the way OpenSSL handled TLS status request extension data during session renegotiation. A remote attacker could cause a TLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory, if it enabled OCSP stapling support.

Platform:
Amazon Linux AMI
Product:
openssl
Reference:
ALAS-2016-749
CVE-2016-6304
CVE    1
CVE-2016-6304
CPE    34
cpe:/a:openssl:openssl
cpe:/o:amazon:linux
cpe:/a:openssl:openssl:1.0.1:beta1
cpe:/a:openssl:openssl:1.0.2b
...

© 2013 SecPod Technologies