|
|
Subscribe / Log in / New account

polarssl: denial of service

Package(s):polarssl CVE #(s):CVE-2014-4911
Created:July 18, 2014 Updated:August 6, 2014
Description:

From the Debian advisory:

A flaw was discovered in PolarSSL, a lightweight crypto and SSL/TLS library, which can be exploited by a remote unauthenticated attacker to mount a denial of service against PolarSSL servers that offer GCM ciphersuites. Potentially clients are affected too if a malicious server decides to execute the denial of service attack against its clients.

Alerts:
Mageia MGASA-2015-0185 hiawatha 2015-05-05
Mageia MGASA-2014-0315 polarssl 2014-08-05
Fedora FEDORA-2014-8310 polarssl 2014-07-22
Fedora FEDORA-2014-8316 polarssl 2014-07-22
Debian DSA-2981-1 polarssl 2014-07-18
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds