Thread-topic: [SA22130] OpenSSL Multiple Denial of Service Vulnerabilities
>
> TITLE:
> OpenSSL Multiple Denial of Service Vulnerabilities
>
> SECUNIA ADVISORY ID:
> SA22130
>
> VERIFY ADVISORY:
>
>
> CRITICAL:
> Moderately critical
>
> IMPACT:
> DoS
>
> WHERE:
> From remote
>
> SOFTWARE:
> OpenSSL 0.9.x
>
>
> DESCRIPTION:
> Some vulnerabilities have been reported in OpenSSL, which can be
> exploited by malicious people to cause a DoS (Denial of Service).
>
> 1) An error in the processing of certain invalid ASN.1 structures can
> be exploited to cause an infinite loop and consume system memory in an
> application using OpenSSL to process ASN.1 data from untrusted
> sources.
>
> NOTE: This does not affect versions prior to 0.9.7.
>
> 2) Certain types of public keys take overly long time to process and
> can be exploited to cause a DoS in an application using OpenSSL to
> process ASN.1 data from untrusted sources.
>
> 3) An error in the "SSL_get_shared_ciphers()" function can be
> exploited to cause a buffer overflow by sending a list of ciphers to
> an application using the vulnerable function.
>
> 4) An error in the SSLv2 client code can be exploited by a malicious
> server to crash a vulnerable client using OpenSSL to create an SSLv2
> connection to the server.
>
> SOLUTION:
> OpenSSL 0.9.7 branch:
> Update to version 0.9.7l or later.
>
> OpenSSL 0.9.8 branch:
> Update to version 0.9.8d or later.
>
> PROVIDED AND/OR DISCOVERED BY:
> 1, 2) Dr. S. N. Henson, Open Network Security
> 3, 4) Tavis Ormandy and Will Drewry, Google Security Team
>
> ORIGINAL ADVISORY:
>
>
