Security Advisory

CVE-2009-1377

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-05-19 19:00:00

Last updated 2024-08-07 05:13:25

Assigner redhat

State PUBLISHED

Description

The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."

← Browse all CVEs View on cve.org ↗