QwikSec

Security Database

CVE

CWE

Training

CVE-2014-3512

Published: Aug 13, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid SRP (1) g, (2) A, or (3) B parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2014:1052

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

http://www-01.ibm.com/support/docview.wss?uid=swg21682293

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

third-party-advisory

x_refsource_SECUNIA

http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15565.html

x_refsource_CONFIRM

https://www.openssl.org/news/secadv_20140806.txt

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

openssl-cve20143512-dos(95158)

vdb-entry

x_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21683389

x_refsource_CONFIRM

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm

x_refsource_CONFIRM

https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=4a23b12a031860253b58d503f296377ca076427b

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

vendor-advisory

x_refsource_HP

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

http://www.tenable.com/security/tns-2014-06

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

FreeBSD-SA-14:18

vendor-advisory

x_refsource_FREEBSD

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc

x_refsource_CONFIRM

[syslog-ng-announce] 20140910 syslog-ng Premium Edition 5 LTS (5.0.6a) has been released

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

http://www-01.ibm.com/support/docview.wss?uid=swg21686997

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.