Computer Security
[EN] securityvulns.ru no-pyccku


PolarSSL DoS
Published:30.12.2014
Source:
SecurityVulns ID:14188
Type:library
Threat Level:
5/10
Description:Memory leak on certificate parsing.
CVE:CVE-2014-8628 (Memory leak in PolarSSL before 1.2.12 and 1.3.x before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted X.509 certificates. NOTE: this identifier has been SPLIT per ADT3 due to different affected versions. See CVE-2014-9744 for the ClientHello message issue.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3116-1] polarssl security update (30.12.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod