Oval Definition:	oval:org.mitre.oval:def:20975
Revision Date: 2014-02-24 Version: 6 Title: RHSA-2011:0677: openssl security, bug fix, and enhancement update (Moderate) Description: ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka "OCSP stapling vulnerability." Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-0014 RHSA-2011:0677-01 Platform(s): Red Hat Enterprise Linux 6 Product(s): openssl Definition Synopsis The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section openssl-devel is earlier than 0:1.0.0-10.el6 OR openssl-static is earlier than 0:1.0.0-10.el6 OR openssl-perl is earlier than 0:1.0.0-10.el6 OR openssl is earlier than 0:1.0.0-10.el6
BACK