Definition
New Search
The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue aka "DTLS record buffer limitation bug."
oval:org.mitre.oval:def:9663
The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of "future epoch" DTLS records that are buffered in a queue aka "DTLS record buffer limitation bug."
Family:
unix
Status:
ACCEPTED
Platform(s):
- Red Hat Enterprise Linux 5
- Oracle Linux 5
- CentOS Linux 5
Class:
vulnerability
Reference(s):
- CVE-2009-1377
Product(s):