[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97559

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-2475-1 openssl -- integer underflow

ID: oval:org.secpod.oval:def:600812Date: (C)2012-05-22   (M)2017-08-29
Class: PATCHFamily: unix




It was discovered that openssl did not correctly handle explicit Initialization Vectors for CBC encryption modes, as used in TLS 1.1, 1.2, and DTLS. An incorrect calculation would lead to an integer underflow and incorrect memory access, causing denial of service

Platform:
Debian 6.0
Product:
openssl
Reference:
DSA-2475-1
CVE-2012-2333
CVE    1
CVE-2012-2333
CPE    98
cpe:/a:openssl:openssl
cpe:/o:debian:debian_linux:6.0
cpe:/a:openssl:openssl:1.0.0h
cpe:/a:openssl:openssl:1.0.0g
...

© 2013 SecPod Technologies