Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-6450
Description:The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and 1.0.1 before 1.0.1f does not properly maintain data structures for digest and encryption contexts, which might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service (application crash) by interfering with packet delivery, related to ssl/d1_both.c and ssl/t1_enc.c.
Test IDs: 1.3.6.1.4.1.25623.1.0.123280   1.3.6.1.4.1.25623.1.0.123486   1.3.6.1.4.1.25623.1.0.112974   1.3.6.1.4.1.25623.1.0.112973  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-6450
BugTraq ID: 64618
http://www.securityfocus.com/bid/64618
Bugtraq: 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (Google Search)
http://www.securityfocus.com/archive/1/534161/100/0/threaded
Debian Security Information: DSA-2833 (Google Search)
http://www.debian.org/security/2014/dsa-2833
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
http://seclists.org/fulldisclosure/2014/Dec/23
http://security.gentoo.org/glsa/glsa-201412-39.xml
RedHat Security Advisories: RHSA-2014:0015
http://rhn.redhat.com/errata/RHSA-2014-0015.html
http://www.securitytracker.com/id/1029549
http://www.securitytracker.com/id/1031594
SuSE Security Announcement: openSUSE-SU-2014:0048 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-01/msg00031.html
SuSE Security Announcement: openSUSE-SU-2014:0049 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-01/msg00032.html
http://www.ubuntu.com/usn/USN-2079-1




© 1998-2024 E-Soft Inc. All rights reserved.