CVE-2002-1563
published 2003-05-12CVE-2002-1563: stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the…
PriorityP48low1.2CVSS 2.0
AVLACHAuNCNINAP
EPSS
0.34%
25.5th percentile
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | stunnel4 | < stunnel4 4.04-1 (bookworm) | stunnel4 4.04-1 (bookworm) |
| stunnel | stunnel | — | — |
CVSS provenance
nvdv2.01.2LOWAV:L/AC:H/Au:N/C:N/I:N/A:P
osv1.2LOW
vendor_debian1.2LOW
vendor_redhat1.2LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2002-10-30·CVSS 1.2
CVE-2002-1563 [LOW] security flaw
security flaw
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
Debian
CVE-2002-1563: stunnel4 - stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) ...
vendor_debian·2002·CVSS 1.2
CVE-2002-1563 [LOW] CVE-2002-1563: stunnel4 - stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) ...
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
Scope: local
bookworm: resolved (fixed in 4.04-1)
bullseye: resolved (fixed in 4.04-1)
forky: resolved (fixed in 4.04-1)
sid: resolved (fixed in 4.04-1)
trixie: resolved (fixed in 4.04-1)
GHSA
GHSA-6234-fx93-pwcr: stunnel 4
ghsa_unreviewed·2022-04-30
CVE-2002-1563 [LOW] GHSA-6234-fx93-pwcr: stunnel 4
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
OSV
CVE-2002-1563: stunnel 4
osv·2003-05-12·CVSS 1.2
CVE-2002-1563 [LOW] CVE-2002-1563: stunnel 4
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
No detection rules found.
No public exploits indexed.
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000736http://marc.info/?l=bugtraq&m=104247606910598http://marc.info/?l=bugtraq&m=106029168514511&w=2http://marc.info/?l=stunnel-users&m=103600188215117&w=2http://www.linuxsecurity.com/advisories/engarde_advisory-3535.htmlhttp://www.redhat.com/support/errata/RHSA-2003-221.htmlhttp://www.redhat.com/support/errata/RHSA-2003-223.htmlhttp://www.securityfocus.com/bid/6592http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000736http://marc.info/?l=bugtraq&m=104247606910598http://marc.info/?l=bugtraq&m=106029168514511&w=2http://marc.info/?l=stunnel-users&m=103600188215117&w=2http://www.linuxsecurity.com/advisories/engarde_advisory-3535.htmlhttp://www.redhat.com/support/errata/RHSA-2003-221.htmlhttp://www.redhat.com/support/errata/RHSA-2003-223.htmlhttp://www.securityfocus.com/bid/6592
2003-05-12
Published