Oval Definition:oval:org.opensuse.security:def:20148628
Revision Date:2022-06-30Version:1
Title:CVE-2014-8628
Description:

Memory leak in PolarSSL before 1.2.12 and 1.3.x before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted X.509 certificates. NOTE: this identifier has been SPLIT per ADT3 due to different affected versions. See CVE-2014-9744 for the ClientHello message issue.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-8628
Mitre CVE-2014-8628
SUSE CVE-2014-8628
openSUSE-SU-2014:1457-1
Platform(s):openSUSE 13.2
openSUSE Leap 42.2
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.2 is installed
  • AND Package Information
  • libpolarssl7-1.3.9-4.1 is installed
  • OR polarssl-1.3.9-4.1 is installed
  • OR polarssl-devel-1.3.9-4.1 is installed
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • libmbedtls9-1.3.17-13.1 is installed
  • AND libmbedtls9 is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libmbedcrypto0-2.4.0-1.2 is installed
  • OR libmbedcrypto0-32bit-2.4.0-1.2 is installed
  • OR libmbedtls10-2.4.0-1.2 is installed
  • OR libmbedtls10-32bit-2.4.0-1.2 is installed
  • OR libmbedx509-0-2.4.0-1.2 is installed
  • OR libmbedx509-0-32bit-2.4.0-1.2 is installed
  • OR mbedtls-devel-2.4.0-1.2 is installed
    • BACK