Back to search
CVE-2014-3510
Published: Aug 13, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL pointer dereference and client application crash) via a crafted handshake message in conjunction with a (1) anonymous DH or (2) anonymous ECDH ciphersuite.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2014:1297
vendor-advisory
x_refsource_REDHAT
openSUSE-SU-2014:1052
vendor-advisory
x_refsource_SUSE
http://linux.oracle.com/errata/ELSA-2014-1052.html
x_refsource_CONFIRM
60221
third-party-advisory
x_refsource_SECUNIA
http://www-01.ibm.com/support/docview.wss?uid=swg21682293
x_refsource_CONFIRM
60778
third-party-advisory
x_refsource_SECUNIA
61184
third-party-advisory
x_refsource_SECUNIA
SSRT101846
vendor-advisory
x_refsource_HP
RHSA-2014:1256
vendor-advisory
x_refsource_REDHAT
60022
third-party-advisory
x_refsource_SECUNIA
https://www.openssl.org/news/secadv_20140806.txt
x_refsource_CONFIRM
61017
third-party-advisory
x_refsource_SECUNIA
61250
third-party-advisory
x_refsource_SECUNIA
http://www-01.ibm.com/support/docview.wss?uid=swg21683389
x_refsource_CONFIRM
openssl-cve20143510-dos(95164)
vdb-entry
x_refsource_XF
GLSA-201412-39
vendor-advisory
x_refsource_GENTOO
HPSBHF03293
vendor-advisory
x_refsource_HP
61045
third-party-advisory
x_refsource_SECUNIA
60803
third-party-advisory
x_refsource_SECUNIA
60824
third-party-advisory
x_refsource_SECUNIA
HPSBUX03095
vendor-advisory
x_refsource_HP
59700
third-party-advisory
x_refsource_SECUNIA
FEDORA-2014-9308
vendor-advisory
x_refsource_FEDORA
1030693
vdb-entry
x_refsource_SECTRACK
59743
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2016:0640
vendor-advisory
x_refsource_SUSE
60917
third-party-advisory
x_refsource_SECUNIA
60493
third-party-advisory
x_refsource_SECUNIA
59710
third-party-advisory
x_refsource_SECUNIA
60921
third-party-advisory
x_refsource_SECUNIA
HPSBOV03099
vendor-advisory
x_refsource_HP
http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15568.html
x_refsource_CONFIRM
59221
third-party-advisory
x_refsource_SECUNIA
69082
vdb-entry
x_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240
x_refsource_CONFIRM
61100
third-party-advisory
x_refsource_SECUNIA
FreeBSD-SA-14:18
vendor-advisory
x_refsource_FREEBSD
61775
third-party-advisory
x_refsource_SECUNIA
DSA-2998
vendor-advisory
x_refsource_DEBIAN
FEDORA-2014-9301
vendor-advisory
x_refsource_FEDORA
SSRT101674
vendor-advisory
x_refsource_HP
61959
third-party-advisory
x_refsource_SECUNIA
59756
third-party-advisory
x_refsource_SECUNIA
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc
x_refsource_CONFIRM
58962
third-party-advisory
x_refsource_SECUNIA
http://linux.oracle.com/errata/ELSA-2014-1053.html
x_refsource_CONFIRM
60938
third-party-advisory
x_refsource_SECUNIA
60684
third-party-advisory
x_refsource_SECUNIA
[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released
mailing-list
x_refsource_MLIST
60687
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=1127503
x_refsource_CONFIRM
MDVSA-2014:158
vendor-advisory
x_refsource_MANDRIVA
http://www-01.ibm.com/support/docview.wss?uid=swg21686997
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now