Oval Definition:oval:org.mitre.oval:def:24638
Revision Date:2014-08-11Version:16
Title:Race condition in the ssl3_read_bytes function in s3_pkt.c in
Description:Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-5298
Platform(s):IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis
  • platforms
  • IBM AIX 6.1 is installed
  • OR IBM AIX 7.1 is installed
  • AND File Version Exists
  • openssl.base greater than or equal 1.0.1.500
  • AND openssl.base less than or equal 1.0.1.502
  • BACK