Back to search
CVE-2014-8628
Published: Aug 24, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Memory leak in PolarSSL before 1.2.12 and 1.3.x before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted X.509 certificates. NOTE: this identifier has been SPLIT per ADT3 due to different affected versions. See CVE-2014-9744 for the ClientHello message issue.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2014:1457
vendor-advisory
x_refsource_SUSE
DSA-3116
vendor-advisory
x_refsource_DEBIAN
https://polarssl.org/tech-updates/releases/polarssl-1.3.9-released
x_refsource_CONFIRM
https://polarssl.org/tech-updates/releases/polarssl-1.2.12-released
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now