[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-2981-1 polarssl -- polarssl

ID: oval:org.secpod.oval:def:601708Date: (C)2014-07-28   (M)2022-10-10
Class: PATCHFamily: unix




A flaw was discovered in PolarSSL, a lightweight crypto and SSL/TLS library, which can be exploited by a remote unauthenticated attacker to mount a denial of service against PolarSSL servers that offer GCM ciphersuites. Potentially clients are affected too if a malicious server decides to execute the denial of service attack against its clients.

Platform:
Debian 7.0
Product:
libpolarssl-dev
libpolarssl-runtime
Reference:
DSA-2981-1
CVE-2014-4911
CVE    1
CVE-2014-4911
CPE    3
cpe:/o:debian:debian_linux:7.x
cpe:/a:polarssl:libpolarssl-runtime
cpe:/a:polarssl:libpolarssl-dev

© SecPod Technologies