Severity: Unknown
Affected Package: openssl
Summary: OpenSSL DTLS memory consumption, memory leak, and information disclosure
Several OpenSSL DTLS-related issues were fixed: a crafted DTLS handshake message could cause excessive memory consumption, a crafted DTLS packet could leak memory, a flaw in OBJ_obj2txt could leak stack information via pretty-printing functions, and DTLS clients enabling anonymous (EC)DH ciphersuites were subject to a denial of service. Impacts are denial of service and information disclosure.
No specific recommendations provided.
Aliases: CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3510
Published: September 09, 2014
Last Modified: September 09, 2014