OpenSSL Security Advisory 20120118 - A flaw in the fix to CVE-2011-4108 can be exploited in a denial of service attack. Only DTLS applications using OpenSSL 1.0.0f and 0.9.8s are affected.
e55f12039df4b1b5e3090b2ac7d30399d54dbd028fdcbc8d757749f399095b1dOpenSSL Security Advisory [18 Jan 2012]
=======================================
DTLS DoS attack (CVE-2012-0050)
================================
A flaw in the fix to CVE-2011-4108 can be exploited in a denial of
service attack. Only DTLS applications using OpenSSL 1.0.0f and
0.9.8s are affected.
Thanks to Antonio Martin, Enterprise Secure Access Research and
Development, Cisco Systems, Inc. for discovering this bug and
preparing a fix.
Affected users should upgrade to OpenSSL 1.0.0g or 0.9.8t.
References
==========
URL for this Security Advisory:
https://www.openssl.org/news/secadv_20120118.txt
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed