CVE-2012-0050
published 2012-01-19CVE-2012-0050: OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified…
PriorityP426medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
13.86%
96.1th percentile
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 1.0.0g-1 (bookworm) | openssl 1.0.0g-1 (bookworm) |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 1.0.0g-1 | 1.0.0g-1 |
| openssl | openssl | >= 0 < 1.0.0g-1 | 1.0.0g-1 |
| openssl | openssl | >= 0 < 1.0.0g-1 | 1.0.0g-1 |
| openssl | openssl | >= 0 < 1.0.0g-1 | 1.0.0g-1 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
vendor_ubuntu2.6LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
OpenSSL vulnerabilities
vendor_ubuntu·2012-02-09·CVSS 2.6
CVE-2012-0027 [LOW] OpenSSL vulnerabilities
Title: OpenSSL vulnerabilities
Summary: Multiple vulnerabilities exist in OpenSSL that could expose
sensitive information or cause applications to crash.
It was discovered that the elliptic curve cryptography (ECC) subsystem
in OpenSSL, when using the Elliptic Curve Digital Signature Algorithm
(ECDSA) for the ECDHE_ECDSA cipher suite, did not properly implement
curves over binary fields. This could allow an attacker to determine
private keys via a timing attack. This issue only affected Ubuntu 8.04
LTS, Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04. (CVE-2011-1945)
Adam Langley discovered that the ephemeral Elliptic Curve
Diffie-Hellman (ECDH) functionality in OpenSSL did not ensure thread
safety while processing handshake messages from clients. This
could allow a remote attacker to c
Debian
CVE-2012-0050: openssl - OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which all...
vendor_debian·2012·CVSS 4.3
CVE-2012-0050 [MEDIUM] CVE-2012-0050: openssl - OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which all...
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
Scope: local
bookworm: resolved (fixed in 1.0.0g-1)
bullseye: resolved (fixed in 1.0.0g-1)
forky: resolved (fixed in 1.0.0g-1)
sid: resolved (fixed in 1.0.0g-1)
trixie: resolved (fixed in 1.0.0g-1)
Red Hat
openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
vendor_redhat·2011-01-18·CVSS 4.3
CVE-2012-0050 [MEDIUM] openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
Statement: Not vulnerable. This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 3, 4, 5, and 6.
Package: openssl (Red Hat Enterprise Linux 4) - Not affected
Package: openssl096b (Red Hat Enterprise Linux 4) - Not affected
Package: openssl (Red Hat Enterprise Linux 5) - Not affected
Package: openssl097a (Red Hat Enterprise Linux 5) - Not affected
Package: openssl (Red Hat Enterprise Linux 6) - Not affected
Pa
GHSA
GHSA-ph62-8mr5-rp5w: OpenSSL 0
ghsa_unreviewed·2022-05-04·CVSS 4.3
CVE-2012-0050 [MEDIUM] GHSA-ph62-8mr5-rp5w: OpenSSL 0
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
OSV
CVE-2012-0050: OpenSSL 0
osv·2012-01-19·CVSS 4.3
CVE-2012-0050 [MEDIUM] CVE-2012-0050: OpenSSL 0
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix [fedora-all]
bugzilla·2012-01-19·CVSS 4.3
CVE-2012-0050 [MEDIUM] CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix [fedora-all]
CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/
Bugzilla
CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
bugzilla·2012-01-18·CVSS 4.3
CVE-2012-0050 [MEDIUM] CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
CVE-2012-0050 openssl: remote DTLS server DoS introduced in the CVE-2011-4108 fix
Quoting upstream advisory:
http://www.openssl.org/news/secadv_20120118.txt
A flaw in the fix to CVE-2011-4108 can be exploited in a denial of
service attack. Only DTLS applications using OpenSSL 1.0.0f and
0.9.8s are affected.
The fix for CVE-2011-4108 (bug #771770) introduced a regression that can allow remote attacker to crash DTLS servers using affected OpenSSL version because of an out-of-bounds read. This issue is corrected in OpenSSL 1.0.0g or 0.9.8t.
Upstream fix:
http://cvs.openssl.org/chngview?cn=22032 (0.9.8)
http://cvs.openssl.org/chngview?cn=22037 (1.0.0)
Discussion:
As openssl updates for Red Hat Enterprise Linux addressing CVE-2011-4108 have not been released yet, no released openssl vers
Bugzilla
CVE-2011-4108 openssl: DTLS plaintext recovery attack
bugzilla·2012-01-04·CVSS 4.3
CVE-2011-4108 [MEDIUM] CVE-2011-4108 openssl: DTLS plaintext recovery attack
CVE-2011-4108 openssl: DTLS plaintext recovery attack
DTLS Plaintext Recovery Attack (CVE-2011-4108)
Nadhem Alfardan and Kenny Paterson have discovered an extension of the
Vaudenay padding oracle attack on CBC mode encryption which enables an
efficient plaintext recovery attack against the OpenSSL implementation
of DTLS. Their attack exploits timing differences arising during
decryption processing. A research paper describing this attack can be
found at http://www.isg.rhul.ac.uk/~kp/dtls.pdf
Thanks go to Nadhem Alfardan and Kenny Paterson of the Information
Security Group at Royal Holloway, University of London
(www.isg.rhul.ac.uk) for discovering this flaw and to Robin Seggelmann
and Michael Tuexen
for preparing the fix.
Affected users should upgrade to OpenSSL 1.0.0f or 0.9.8s.
Refe
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory3.aschttp://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03169289http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.htmlhttp://marc.info/?l=bugtraq&m=133951357207000&w=2http://marc.info/?l=bugtraq&m=134039053214295&w=2http://osvdb.org/78320http://secunia.com/advisories/47631http://secunia.com/advisories/47677http://secunia.com/advisories/47755http://secunia.com/advisories/48528http://secunia.com/advisories/57353http://support.apple.com/kb/HT5784http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564http://www.debian.org/security/2012/dsa-2392http://www.mandriva.com/security/advisories?name=MDVSA-2012:011http://www.openssl.org/news/secadv_20120118.txthttp://www.securityfocus.com/bid/51563http://www.securitytracker.com/id?1026548http://aix.software.ibm.com/aix/efixes/security/openssl_advisory3.aschttp://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03169289http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.htmlhttp://marc.info/?l=bugtraq&m=133951357207000&w=2http://marc.info/?l=bugtraq&m=134039053214295&w=2http://osvdb.org/78320http://secunia.com/advisories/47631http://secunia.com/advisories/47677http://secunia.com/advisories/47755http://secunia.com/advisories/48528http://secunia.com/advisories/57353http://support.apple.com/kb/HT5784http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564http://www.debian.org/security/2012/dsa-2392http://www.mandriva.com/security/advisories?name=MDVSA-2012:011http://www.openssl.org/news/secadv_20120118.txthttp://www.securityfocus.com/bid/51563http://www.securitytracker.com/id?1026548
2012-01-19
Published