Back to search
CVE-2011-0014
Published: Feb 18, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka "OCSP stapling vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2011-0361
vdb-entry
x_refsource_VUPEN
SSA:2011-041-04
vendor-advisory
x_refsource_SLACKWARE
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564
x_refsource_CONFIRM
70847
vdb-entry
x_refsource_OSVDB
http://support.apple.com/kb/HT4723
x_refsource_CONFIRM
ADV-2011-0399
vdb-entry
x_refsource_VUPEN
RHSA-2011:0677
vendor-advisory
x_refsource_REDHAT
43301
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:18985
vdb-entry
signature
x_refsource_OVAL
APPLE-SA-2011-06-23-1
vendor-advisory
x_refsource_APPLE
ADV-2011-0387
vdb-entry
x_refsource_VUPEN
43286
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2011:005
vendor-advisory
x_refsource_SUSE
DSA-2162
vendor-advisory
x_refsource_DEBIAN
ADV-2011-0395
vdb-entry
x_refsource_VUPEN
NetBSD-SA2011-002
vendor-advisory
x_refsource_NETBSD
USN-1064-1
vendor-advisory
x_refsource_UBUNTU
SSRT100475
vendor-advisory
x_refsource_HP
HPSBMA02658
vendor-advisory
x_refsource_HP
SSRT100413
vendor-advisory
x_refsource_HP
43227
third-party-advisory
x_refsource_SECUNIA
ADV-2011-0389
vdb-entry
x_refsource_VUPEN
MDVSA-2011:028
vendor-advisory
x_refsource_MANDRIVA
FEDORA-2011-1273
vendor-advisory
x_refsource_FEDORA
46264
vdb-entry
x_refsource_BID
57353
third-party-advisory
x_refsource_SECUNIA
HPSBUX02689
vendor-advisory
x_refsource_HP
http://www.openssl.org/news/secadv_20110208.txt
x_refsource_CONFIRM
44269
third-party-advisory
x_refsource_SECUNIA
HPSBOV02670
vendor-advisory
x_refsource_HP
43339
third-party-advisory
x_refsource_SECUNIA
SSRT100494
vendor-advisory
x_refsource_HP
ADV-2011-0603
vdb-entry
x_refsource_VUPEN
1025050
vdb-entry
x_refsource_SECTRACK
https://support.f5.com/csp/article/K10534046
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now