CVE-2014-5139
published 2014-08-13CVE-2014-5139: The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer…
PriorityP426medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
20.00%
97.1th percentile
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssl | < openssl 1.0.1i-1 (bookworm) | openssl 1.0.1i-1 (bookworm) |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | — | — |
| openssl | openssl | >= 0 < 1.0.1i-1 | 1.0.1i-1 |
| openssl | openssl | >= 0 < 1.0.1i-1 | 1.0.1i-1 |
| openssl | openssl | >= 0 < 1.0.1i-1 | 1.0.1i-1 |
| openssl | openssl | >= 0 < 1.0.1i-1 | 1.0.1i-1 |
| openssl | openssl | >= 0 < 1.0.1f-1ubuntu2.5 | 1.0.1f-1ubuntu2.5 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_ubuntu5.0MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4wj2-rv2r-wj7f: The ssl_set_client_disabled function in t1_lib
ghsa_unreviewed·2022-05-17
CVE-2014-5139 [MEDIUM] GHSA-4wj2-rv2r-wj7f: The ssl_set_client_disabled function in t1_lib
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
OSV
CVE-2014-5139: The ssl_set_client_disabled function in t1_lib
osv·2014-08-13·CVSS 4.3
CVE-2014-5139 [MEDIUM] CVE-2014-5139: The ssl_set_client_disabled function in t1_lib
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
OSV
openssl vulnerabilities
osv·2014-08-07·CVSS 5.0
CVE-2014-3505 [MEDIUM] openssl vulnerabilities
openssl vulnerabilities
Adam Langley and Wan-Teh Chang discovered that OpenSSL incorrectly handled
certain DTLS packets. A remote attacker could use this issue to cause
OpenSSL to crash, resulting in a denial of service. (CVE-2014-3505)
Adam Langley discovered that OpenSSL incorrectly handled memory when
processing DTLS handshake messages. A remote attacker could use this issue
to cause OpenSSL to consume memory, resulting in a denial of service.
(CVE-2014-3506)
Adam Langley discovered that OpenSSL incorrectly handled memory when
processing DTLS fragments. A remote attacker could use this issue to cause
OpenSSL to leak memory, resulting in a denial of service. This issue
only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2014-3507)
Ivan Fratric discovered that OpenSSL incorrectl
BSD
FreeBSD-SA-14:18.openssl: OpenSSL multiple vulnerabilities
bsd_advisories·2014-09-09·CVSS 5.0
CVE-2014-3506 [MEDIUM] FreeBSD-SA-14:18.openssl: OpenSSL multiple vulnerabilities
FreeBSD-SA-14:18.openssl Security Advisory
The FreeBSD Project
Topic: OpenSSL multiple vulnerabilities
Category: contrib
Module: openssl
Announced: 2014-09-09
Affects: All supported versions of FreeBSD.
Corrected: 2014-08-07 21:04:42 UTC (stable/10, 10.0-STABLE)
2014-09-09 10:09:46 UTC (releng/10.0, 10.0-RELEASE-p8)
2014-08-07 21:06:34 UTC (stable/9, 9.3-STABLE)
2014-09-09 10:13:46 UTC (releng/9.3, 9.3-RELEASE-p1)
2014-09-09 10:13:46 UTC (releng/9.2, 9.2-RELEASE-p11)
2014-09-09 10:13:46 UTC (releng/9.1, 9.1-RELEASE-p18)
2014-08-07 21:06:34 UTC (stable/8, 8.4-STABLE)
2014-09-09 10:13:46 UTC (releng/8.4, 8.4-RELEASE-p15)
CVE Name: CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3510,
CVE-2014-3509, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139
For general information regarding FreeBSD
Ubuntu
OpenSSL vulnerabilities
vendor_ubuntu·2014-08-07·CVSS 5.0
CVE-2014-3505 [MEDIUM] OpenSSL vulnerabilities
Title: OpenSSL vulnerabilities
Summary: Several security issues were fixed in OpenSSL.
Adam Langley and Wan-Teh Chang discovered that OpenSSL incorrectly handled
certain DTLS packets. A remote attacker could use this issue to cause
OpenSSL to crash, resulting in a denial of service. (CVE-2014-3505)
Adam Langley discovered that OpenSSL incorrectly handled memory when
processing DTLS handshake messages. A remote attacker could use this issue
to cause OpenSSL to consume memory, resulting in a denial of service.
(CVE-2014-3506)
Adam Langley discovered that OpenSSL incorrectly handled memory when
processing DTLS fragments. A remote attacker could use this issue to cause
OpenSSL to leak memory, resulting in a denial of service. This issue
only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.
Red Hat
openssl: crash with SRP ciphersuite in Server Hello message
vendor_redhat·2014-08-06·CVSS 4.3
CVE-2014-5139 [MEDIUM] CWE-476 openssl: crash with SRP ciphersuite in Server Hello message
openssl: crash with SRP ciphersuite in Server Hello message
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
Statement: Not vulnerable. This issue did not affect the versions of openssl as shipped
with Red Hat Enterprise Linux 5, 6 and 7, Red Hat Enterprise Virtualization 3,
and Red Hat Enterprise Storage 2, as they do not enable Secure Remote Password
(SRP) support. All other supported Red Hat products that include openssl use
older versions that are not affected by this issue.
Package: openssl (Red Hat Enterprise Linux
Debian
CVE-2014-5139: openssl - The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i ...
vendor_debian·2014·CVSS 4.3
CVE-2014-5139 [MEDIUM] CVE-2014-5139: openssl - The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i ...
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
Scope: local
bookworm: resolved (fixed in 1.0.1i-1)
bullseye: resolved (fixed in 1.0.1i-1)
forky: resolved (fixed in 1.0.1i-1)
sid: resolved (fixed in 1.0.1i-1)
trixie: resolved (fixed in 1.0.1i-1)
No detection rules found.
No public exploits indexed.
Tenable
[R4] Tenable Products Affected by OpenSSL Protocol Downgrade Vulnerability
blogs_tenable·2014-08-21
[R4] Tenable Products Affected by OpenSSL Protocol Downgrade Vulnerability
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Bugzilla
CVE-2014-5139 openssl: crash with SRP ciphersuite in Server Hello message
bugzilla·2014-08-07·CVSS 4.3
CVE-2014-5139 [MEDIUM] CVE-2014-5139 openssl: crash with SRP ciphersuite in Server Hello message
CVE-2014-5139 openssl: crash with SRP ciphersuite in Server Hello message
A null pointer deference flaw was found in OpenSSL's Secure Remote Password (SRP) implementation. An attacker controlling a malicious server could use this flaw to crash a vulnerable client.
Discussion:
External References:
https://www.openssl.org/news/secadv_20140806.txt
---
The openssl packages shipped in Red Hat Enterprise Linux and Fedora are build with the Secure Remote Password (SRP) support disabled and were therefore not affected by this issue.
Also note that SRP support was introduced upstream in version 1.0.1.
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=edc032b
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=0deea0e
---
Statement:
Not vulnerable. This issue did not a
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.aschttp://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.aschttp://lists.opensuse.org/opensuse-updates/2014-08/msg00036.htmlhttp://marc.info/?l=bugtraq&m=142350350616251&w=2http://marc.info/?l=bugtraq&m=142495837901899&w=2http://marc.info/?l=bugtraq&m=142624590206005&w=2http://marc.info/?l=bugtraq&m=142624619906067http://marc.info/?l=bugtraq&m=142624619906067&w=2http://marc.info/?l=bugtraq&m=142624679706236&w=2http://marc.info/?l=bugtraq&m=142624719706349&w=2http://marc.info/?l=bugtraq&m=142660345230545&w=2http://marc.info/?l=bugtraq&m=142791032306609&w=2http://marc.info/?l=bugtraq&m=143290437727362&w=2http://marc.info/?l=bugtraq&m=143290522027658&w=2http://secunia.com/advisories/59700http://secunia.com/advisories/59710http://secunia.com/advisories/59756http://secunia.com/advisories/60022http://secunia.com/advisories/60221http://secunia.com/advisories/60493http://secunia.com/advisories/60803http://secunia.com/advisories/60810http://secunia.com/advisories/60917http://secunia.com/advisories/60921http://secunia.com/advisories/61017http://secunia.com/advisories/61100http://secunia.com/advisories/61171http://secunia.com/advisories/61184http://secunia.com/advisories/61392http://secunia.com/advisories/61775http://secunia.com/advisories/61959http://security.gentoo.org/glsa/glsa-201412-39.xmlhttp://support.f5.com/kb/en-us/solutions/public/15000/500/sol15567.htmlhttp://www-01.ibm.com/support/docview.wss?uid=nas8N1020240http://www-01.ibm.com/support/docview.wss?uid=swg21682293http://www-01.ibm.com/support/docview.wss?uid=swg21683389http://www-01.ibm.com/support/docview.wss?uid=swg21686997http://www.debian.org/security/2014/dsa-2998http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htmhttp://www.securityfocus.com/bid/69077http://www.securitytracker.com/id/1030693http://www.tenable.com/security/tns-2014-06https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=80bd7b41b30af6ee96f519e629463583318de3b0https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=83764a989dcc87fbea337da5f8f86806fe767b7ehttps://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.htmlhttps://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.aschttps://www.openssl.org/news/secadv_20140806.txtftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.aschttp://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.aschttp://lists.opensuse.org/opensuse-updates/2014-08/msg00036.htmlhttp://marc.info/?l=bugtraq&m=142350350616251&w=2http://marc.info/?l=bugtraq&m=142495837901899&w=2http://marc.info/?l=bugtraq&m=142624590206005&w=2http://marc.info/?l=bugtraq&m=142624619906067http://marc.info/?l=bugtraq&m=142624619906067&w=2http://marc.info/?l=bugtraq&m=142624679706236&w=2http://marc.info/?l=bugtraq&m=142624719706349&w=2http://marc.info/?l=bugtraq&m=142660345230545&w=2http://marc.info/?l=bugtraq&m=142791032306609&w=2http://marc.info/?l=bugtraq&m=143290437727362&w=2http://marc.info/?l=bugtraq&m=143290522027658&w=2http://secunia.com/advisories/59700http://secunia.com/advisories/59710http://secunia.com/advisories/59756http://secunia.com/advisories/60022http://secunia.com/advisories/60221http://secunia.com/advisories/60493http://secunia.com/advisories/60803http://secunia.com/advisories/60810http://secunia.com/advisories/60917http://secunia.com/advisories/60921http://secunia.com/advisories/61017http://secunia.com/advisories/61100http://secunia.com/advisories/61171http://secunia.com/advisories/61184http://secunia.com/advisories/61392http://secunia.com/advisories/61775http://secunia.com/advisories/61959http://security.gentoo.org/glsa/glsa-201412-39.xmlhttp://support.f5.com/kb/en-us/solutions/public/15000/500/sol15567.htmlhttp://www-01.ibm.com/support/docview.wss?uid=nas8N1020240http://www-01.ibm.com/support/docview.wss?uid=swg21682293http://www-01.ibm.com/support/docview.wss?uid=swg21683389http://www-01.ibm.com/support/docview.wss?uid=swg21686997http://www.debian.org/security/2014/dsa-2998http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htmhttp://www.securityfocus.com/bid/69077http://www.securitytracker.com/id/1030693http://www.tenable.com/security/tns-2014-06https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=80bd7b41b30af6ee96f519e629463583318de3b0https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=83764a989dcc87fbea337da5f8f86806fe767b7ehttps://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.htmlhttps://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.aschttps://www.openssl.org/news/secadv_20140806.txt
2014-08-13
Published