CVE-2010-2939

Related Files

FreeBSD Security Advisory - OpenSSL

Posted Dec 1, 2010

Site security.freebsd.org

FreeBSD Security Advisory - A race condition exists in the OpenSSL TLS server extension code parsing when used in a multi-threaded application, which uses OpenSSL's internal caching mechanism. The race condition can lead to a buffer overflow. A double free exists in the SSL client ECDH handling code, when processing specially crafted public keys with invalid prime numbers.

tags | advisory, overflow

systems | freebsd

advisories | CVE-2010-3864, CVE-2010-2939

SHA-256 | 8cfb790813185171ffd5ee2585fb00786a32d5a0a08c54131d90d05b0270c73a

Download | Favorite | View

Ubuntu Security Notice 1003-1

Posted Oct 8, 2010

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1003-1 - It was discovered that OpenSSL incorrectly handled return codes from the bn_wexpand function calls. A remote attacker could trigger this flaw in services that used SSL to cause a denial of service or possibly execute arbitrary code with application privileges. This issue only affected Ubuntu 6.06 LTS, 8.04 LTS, 9.04 and 9.10. It was discovered that OpenSSL incorrectly handled certain private keys with an invalid prime. A remote attacker could trigger this flaw in services that used SSL to cause a denial of service or possibly execute arbitrary code with application privileges. The default compiler options for affected releases should reduce the vulnerability to a denial of service.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2009-3245, CVE-2010-2939

SHA-256 | b2e715ef6350c014f2ef81d22da60aa3be6b6ec9f0721564b45fce3833ccb3a8

Download | Favorite | View

Mandriva Linux Security Advisory 2010-168

Posted Sep 1, 2010

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-168 - Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service and possibly execute some sources refer to this as a use-after-free issue. The updated packages have been patched to correct this issue.

tags | advisory, denial of service

systems | linux, mandriva

advisories | CVE-2010-2939

SHA-256 | 531f346cdb1818f62c1356d23aa1e495cb1f0b99540d9a6b27de46d7270456b7

Download | Favorite | View

Debian Linux Security Advisory 2100-1

Posted Aug 30, 2010

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2100-1 - George Guninski discovered a double free in the ECDH code of the OpenSSL crypto library, which may lead to denial of service and potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, crypto

systems | linux, debian

advisories | CVE-2010-2939

SHA-256 | 3909f527b897a5b897e023ce44d7c8ead354203ce693f5c7850f56715487e780

Download | Favorite | View