CVE-2011-4619 — Openssl vulnerability

CWE-39912 documents8 sources

Severity

5.0MEDIUMNVD

EPSS

3.2%

top 13.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Debian Openssl

Timeline

PublishedJan 6

Latest updateMay 17

Description

The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly handle handshake restarts, which allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/openssl< openssl 1.0.0h-1 (bookworm)

▶Debianopenssl/openssl< 1.0.0h-1+3

▶NVDopenssl/openssl0.9.8r+57

🔴Vulnerability Details

GHSA

GHSA-9866-p82r-56gj: The Server Gated Cryptography (SGC) implementation in OpenSSL before 0↗2022-05-17

▶

OSV

CVE-2011-4619: The Server Gated Cryptography (SGC) implementation in OpenSSL before 0↗2012-01-06

▶

📋Vendor Advisories

BSD

FreeBSD-SA-12:01.openssl: OpenSSL multiple vulnerabilities↗2012-05-30

▶

Ubuntu

OpenSSL vulnerabilities↗2012-02-09

▶

Red Hat

openssl: SGC restart DoS attack↗2012-01-04

▶

Debian

CVE-2011-4619: openssl - The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and ...↗2011

▶

💬Community

Bugzilla

CVE-2013-0440 OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)↗2012-09-20

▶

Bugzilla

CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw-openssl various flaws [fedora-all]↗2012-08-08

▶

Bugzilla

CVE-2011-4108 CVE-2011-4109 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw32-openssl various flaws [epel-5]↗2012-01-11

▶

Bugzilla

CVE-2011-4108 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 mingw32-openssl various flaws [fedora-all]↗2012-01-11

▶

Bugzilla

CVE-2011-4619 openssl: SGC restart DoS attack↗2012-01-04

▶