Oval Definition:	oval:org.mitre.oval:def:22755
Revision Date: 2014-05-26 Version: 40 Title: ELSA-2009:1335: openssl security, bug fix, and enhancement update (Moderate) Description: The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence DTLS handshake message, related to a "fragment bug." Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2006-7250 CVE-2009-0590 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 ELSA-2009:1335-02 Platform(s): Oracle Linux 5 Product(s): openssl Definition Synopsis Oracle Linux 5.x AND rpm test openssl is earlier than 0:0.9.8e-12.el5 OR openssl-perl is earlier than 0:0.9.8e-12.el5 OR openssl-devel is earlier than 0:0.9.8e-12.el5
BACK