CVE-2014-3567
published 2014-10-19CVE-2014-3567: Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to…
PriorityP337high7.1CVSS 2.0
AVNACMAuNCNINAC
EPSS
23.60%
97.5th percentile
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
Affected
40 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | os_x_yosemite_v10.10.2_and_security_update_2015-001 | — | — |
| apple | xcode | — | — |
| debian | openssl | < openssl 1.0.1j-1 (bookworm) | openssl 1.0.1j-1 (bookworm) |
| openssl | openssl | <= 0.9.8zb | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
CVSS provenance
nvdv2.07.1HIGHAV:N/AC:M/Au:N/C:N/I:N/A:C
osv7.1HIGH
vendor_debian7.1HIGH
vendor_redhat7.1HIGH
vendor_ubuntu7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
vendor_paloalto·2024-11-07·CVSS 6.8
CVE-2014-0195 [MEDIUM] PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
PAN-SA-2024-0014 Informational Bulletin: Impact of OSS CVEs in Cortex XDR Agent
The Palo Alto Networks Product Security Assurance team has evaluated the following open source software (OSS) CVEs as they relate to Cortex XDR Agent. While Cortex XDR Agent may include the
CVEs: CVE-2014-0195, CVE-2014-0224, CVE-2014-3509, CVE-2014-3512, CVE-2014-3513, CVE-2014-3567, CVE-2015-0209, CVE-2015-0292, CVE-2015-1789, CVE-2015-1791, CVE-2015-1793, CVE-2015-3194, CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799, CVE-2016-2105, CVE-2016-2106, CVE-2016-2108, CVE-2016-2109, CVE-2016-2176, CVE-2016-2177, CVE-2016-2179, CVE-2016-2180, CVE-2016-2181, CVE-2016-2182, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2019-1551, CVE-2019-1552, CVE-2019-1559, CVE-2019-1563, CVE-2020-196
VMware
VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues
vendor_vmware·2015-01-27·CVSS 6.4
CVE-2014-3513 [MEDIUM] VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues
VMSA-2015-0001: VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues
a. VMware ESXi, Workstation, Player, and Fusion host privilege escalation vulnerability VMware ESXi, Workstation, Player and Fusion contain an arbitrary file write issue. Exploitation this issue may allow for privilege escalation on the host. The vulnerability does not allow for privilege escalation from the guest Operating System to the host or vice-versa. This means that host memory can not be manipulated from the Guest Operating System. Mitigation For ESXi to be affected, permissions must have been added to ESXi (or a vCenter Server managing it) for a virtual machine administrator role or greater. VMware would like to thank Shanon Olsson for reporting this issue to us through JP
BSD
FreeBSD-SA-14:23.openssl: OpenSSL multiple vulnerabilities
bsd_advisories·2014-10-21·CVSS 7.1
CVE-2014-3513 [HIGH] FreeBSD-SA-14:23.openssl: OpenSSL multiple vulnerabilities
FreeBSD-SA-14:23.openssl Security Advisory
The FreeBSD Project
Topic: OpenSSL multiple vulnerabilities
Category: contrib
Module: openssl
Announced: 2014-10-21
Affects: All supported versions of FreeBSD.
Corrected: 2014-10-15 19:59:43 UTC (stable/10, 10.1-PRERELEASE)
2014-10-21 19:00:32 UTC (releng/10.1, 10.1-RC3)
2014-10-21 19:00:32 UTC (releng/10.1, 10.1-RC2-p1)
2014-10-21 19:00:32 UTC (releng/10.1, 10.1-RC1-p1)
2014-10-21 19:00:32 UTC (releng/10.1, 10.1-BETA3-p1)
2014-10-21 20:21:10 UTC (releng/10.0, 10.0-RELEASE-p10)
2014-10-15 20:28:31 UTC (stable/9, 9.3-STABLE)
2014-10-21 20:21:10 UTC (releng/9.3, 9.3-RELEASE-p3)
2014-10-21 20:21:10 UTC (releng/9.2, 9.2-RELEASE-p13)
2014-10-21 20:21:10 UTC (releng/9.1, 9.1-RELEASE-p20)
2014-10-15 20:28:31 UTC (stable/8, 8.4-STABLE)
2014-10-21 20:21:
Ubuntu
OpenSSL vulnerabilities
vendor_ubuntu·2014-10-16·CVSS 7.1
CVE-2014-3513 [HIGH] OpenSSL vulnerabilities
Title: OpenSSL vulnerabilities
Summary: Several security issues were fixed in OpenSSL.
It was discovered that OpenSSL incorrectly handled memory when parsing
DTLS SRTP extension data. A remote attacker could possibly use this issue
to cause OpenSSL to consume resources, resulting in a denial of service.
This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.
(CVE-2014-3513)
It was discovered that OpenSSL incorrectly handled memory when verifying
the integrity of a session ticket. A remote attacker could possibly use
this issue to cause OpenSSL to consume resources, resulting in a denial of
service. (CVE-2014-3567)
In addition, this update introduces support for the TLS Fallback Signaling
Cipher Suite Value (TLS_FALLBACK_SCSV). This new feature prevents protocol
downgrade attack
Red Hat
openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
vendor_redhat·2014-10-15·CVSS 7.1
CVE-2014-3567 [HIGH] CWE-401 openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
A memory leak flaw was found in the way an OpenSSL handled failed session ticket integrity checks. A remote attacker could exhaust all available memory of an SSL/TLS or DTLS server by sending a large number of invalid session tickets to that server.
Statement: This issue does not affect the version of openssl shipped with Red Hat Enterprise Linux 5; Red Hat JBoss Enterprise Application Server 5 and 6; and Red Hat JBoss Enterpris
Debian
CVE-2014-3567: openssl - Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9...
vendor_debian·2014·CVSS 7.1
CVE-2014-3567 [HIGH] CVE-2014-3567: openssl - Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9...
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
Scope: local
bookworm: resolved (fixed in 1.0.1j-1)
bullseye: resolved (fixed in 1.0.1j-1)
forky: resolved (fixed in 1.0.1j-1)
sid: resolved (fixed in 1.0.1j-1)
trixie: resolved (fixed in 1.0.1j-1)
Apple
CVE-2014-3567: Xcode 7.0
vendor_apple·CVSS 7.1
CVE-2014-3567 [HIGH] CVE-2014-3567: Xcode 7.0
Apple Security Update: About the security content of Xcode 7.0
Product: Xcode
Version: 7.0
CVE: CVE-2014-3567
Component: CVE-2014-3567
Apple
CVE-2014-3567: OS X Yosemite v10.10.2 and Security Update 2015-001
vendor_apple·CVSS 7.1
CVE-2014-3567 [HIGH] CVE-2014-3567: OS X Yosemite v10.10.2 and Security Update 2015-001
Apple Security Update: About the security content of OS X Yosemite v10.10.2 and Security Update 2015-001
Product: OS X Yosemite v10.10.2 and Security Update 2015-001
CVE: CVE-2014-3567
Component: CVE-2014-3567
GHSA
GHSA-5cmf-xwq3-4rj3: Memory leak in the tls_decrypt_ticket function in t1_lib
ghsa_unreviewed·2022-05-17
CVE-2014-3567 [HIGH] CWE-20 GHSA-5cmf-xwq3-4rj3: Memory leak in the tls_decrypt_ticket function in t1_lib
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
OSV
CVE-2014-3567: Memory leak in the tls_decrypt_ticket function in t1_lib
osv·2014-10-19·CVSS 7.1
CVE-2014-3567 [HIGH] CVE-2014-3567: Memory leak in the tls_decrypt_ticket function in t1_lib
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
OSV
openssl vulnerabilities
osv·2014-10-16·CVSS 7.1
CVE-2014-3513 [HIGH] openssl vulnerabilities
openssl vulnerabilities
It was discovered that OpenSSL incorrectly handled memory when parsing
DTLS SRTP extension data. A remote attacker could possibly use this issue
to cause OpenSSL to consume resources, resulting in a denial of service.
This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.
(CVE-2014-3513)
It was discovered that OpenSSL incorrectly handled memory when verifying
the integrity of a session ticket. A remote attacker could possibly use
this issue to cause OpenSSL to consume resources, resulting in a denial of
service. (CVE-2014-3567)
In addition, this update introduces support for the TLS Fallback Signaling
Cipher Suite Value (TLS_FALLBACK_SCSV). This new feature prevents protocol
downgrade attacks when certain applications such as web browsers attempt
to reco
No detection rules found.
No public exploits indexed.
Tenable
[R7] OpenSSL '20141015' Advisory Affects Tenable Products
blogs_tenable·2014-11-07
[R7] OpenSSL '20141015' Advisory Affects Tenable Products
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
arXiv
Server-side verification of client behavior in cryptographic protocols
arxiv_fulltext·2016-03-13·CVSS 7.5
[HIGH] Server-side verification of client behavior in cryptographic protocols
Server-side Verification of Client Behavior in Cryptographic Protocols
tabularccccc
Andrew Chi & Robert Cochran & Marie Nesfield & Michael K.\ Reiter & Cynthia Sturton\ 10pt]
5cUniversity of North Carolina
5cChapel Hill, NC, USA
tabular
empty
### Abstract
Numerous exploits of client-server protocols and applications involve
modifying clients to behave in ways that untampered clients would not,
such as crafting malicious packets. In this paper, we demonstrate
practical verification of a cryptographic protocol client's messaging
behavior as being consistent with the client program it is believed to
be running. Moreover, we accomplish this without modifying the client
in any way, and without knowing all of the client-side inputs driving
its behavior. Our toolchain for verifying a client'
Bugzilla
CVE-2014-3567 openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
bugzilla·2014-10-15·CVSS 7.1
CVE-2014-3567 [HIGH] CVE-2014-3567 openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
CVE-2014-3567 openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash
OpenSSL upstream reported the following security flaw:
When an OpenSSL SSL/TLS/DTLS server receives a session ticket the integrity of that ticket is first verified. In the event of a session ticket integrity check failing, OpenSSL will fail to free memory causing a memory leak. By sending a large number of invalid session tickets an attacker could exploit this issue in a Denial Of Service attack.
OpenSSL 1.0.1 users should upgrade to 1.0.1j.
OpenSSL 1.0.0 users should upgrade to 1.0.0o.
OpenSSL 0.9.8 users should upgrade to 0.9.8zc.
This issue was reported to OpenSSL on 8th October 2014.
The fix was developed by Stephen Henson of the OpenSSL core team.
External Reference:
https://w
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-015.txt.aschttp://advisories.mageia.org/MGASA-2014-0416.htmlhttp://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.aschttp://lists.apple.com/archives/security-announce/2015/Jan/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2015/Sep/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.htmlhttp://marc.info/?l=bugtraq&m=141477196830952&w=2http://marc.info/?l=bugtraq&m=142103967620673&w=2http://marc.info/?l=bugtraq&m=142118135300698&w=2http://marc.info/?l=bugtraq&m=142495837901899&w=2http://marc.info/?l=bugtraq&m=142624590206005&w=2http://marc.info/?l=bugtraq&m=142791032306609&w=2http://marc.info/?l=bugtraq&m=142804214608580&w=2http://marc.info/?l=bugtraq&m=142834685803386&w=2http://marc.info/?l=bugtraq&m=143290437727362&w=2http://marc.info/?l=bugtraq&m=143290522027658&w=2http://marc.info/?l=bugtraq&m=143290583027876&w=2http://rhn.redhat.com/errata/RHSA-2014-1652.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1692.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0126.htmlhttp://secunia.com/advisories/59627http://secunia.com/advisories/61058http://secunia.com/advisories/61073http://secunia.com/advisories/61130http://secunia.com/advisories/61207http://secunia.com/advisories/61298http://secunia.com/advisories/61819http://secunia.com/advisories/61837http://secunia.com/advisories/61959http://secunia.com/advisories/61990http://secunia.com/advisories/62030http://secunia.com/advisories/62070http://secunia.com/advisories/62124http://security.gentoo.org/glsa/glsa-201412-39.xmlhttp://support.apple.com/HT204244http://www-01.ibm.com/support/docview.wss?uid=swg21686997http://www.debian.org/security/2014/dsa-3053http://www.mandriva.com/security/advisories?name=MDVSA-2014:203http://www.mandriva.com/security/advisories?name=MDVSA-2015:062http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlhttp://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlhttp://www.securityfocus.com/bid/70586http://www.securitytracker.com/id/1031052http://www.splunk.com/view/SP-CAAANSThttp://www.ubuntu.com/usn/USN-2385-1https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=7fd4ce6a997be5f5c9e744ac527725c2850de203https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380https://kc.mcafee.com/corporate/index?page=content&id=SB10091https://support.apple.com/HT205217https://support.citrix.com/article/CTX216642https://www.openssl.org/news/secadv_20141015.txtftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-015.txt.aschttp://advisories.mageia.org/MGASA-2014-0416.htmlhttp://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.aschttp://lists.apple.com/archives/security-announce/2015/Jan/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2015/Sep/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.htmlhttp://marc.info/?l=bugtraq&m=141477196830952&w=2http://marc.info/?l=bugtraq&m=142103967620673&w=2http://marc.info/?l=bugtraq&m=142118135300698&w=2http://marc.info/?l=bugtraq&m=142495837901899&w=2http://marc.info/?l=bugtraq&m=142624590206005&w=2http://marc.info/?l=bugtraq&m=142791032306609&w=2http://marc.info/?l=bugtraq&m=142804214608580&w=2http://marc.info/?l=bugtraq&m=142834685803386&w=2http://marc.info/?l=bugtraq&m=143290437727362&w=2http://marc.info/?l=bugtraq&m=143290522027658&w=2http://marc.info/?l=bugtraq&m=143290583027876&w=2http://rhn.redhat.com/errata/RHSA-2014-1652.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1692.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0126.htmlhttp://secunia.com/advisories/59627http://secunia.com/advisories/61058http://secunia.com/advisories/61073http://secunia.com/advisories/61130http://secunia.com/advisories/61207http://secunia.com/advisories/61298http://secunia.com/advisories/61819http://secunia.com/advisories/61837http://secunia.com/advisories/61959http://secunia.com/advisories/61990http://secunia.com/advisories/62030http://secunia.com/advisories/62070http://secunia.com/advisories/62124http://security.gentoo.org/glsa/glsa-201412-39.xmlhttp://support.apple.com/HT204244http://www-01.ibm.com/support/docview.wss?uid=swg21686997http://www.debian.org/security/2014/dsa-3053http://www.mandriva.com/security/advisories?name=MDVSA-2014:203http://www.mandriva.com/security/advisories?name=MDVSA-2015:062http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlhttp://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
+ 12 more references
2014-10-19
Published