CVE-2014-8176 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Openssl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-20 — Improper Input Validation CWE-39917 documents14 sources

Severity

7.5HIGHNVD

EPSS

23.8%

top 3.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Paloalto Pan-os

Timeline

PublishedJun 12

Latest updateDec 29

Description

The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages4 packages

▶Debianopenssl/openssl< 1.0.1h-1+3

▶Ubuntuopenssl/openssl< 1.0.1f-1ubuntu2.15

▶NVDopenssl/openssl0.9.8z+21

▶Palo Altopaloalto/pan-os

🔴Vulnerability Details

GHSA

GHSA-qwvg-rfmc-974p: The dtls1_clear_queues function in ssl/d1_lib↗2022-05-14

▶

OSV

CVE-2014-8176: The dtls1_clear_queues function in ssl/d1_lib↗2015-06-12

▶

CVEList

CVE-2014-8176: The dtls1_clear_queues function in ssl/d1_lib↗2015-06-12

▶

OSV

openssl vulnerabilities↗2015-06-11

▶

📋Vendor Advisories

CISA ICS

Siemens SCALANCE X-200RNA Switch Devices↗2022-12-19

▶

Palo Alto

PAN-SA-2016-0028 OpenSSL Vulnerabilities↗2016-10-18

▶

Palo Alto

PAN-SA-2016-0020 OpenSSL Vulnerabilities↗2016-08-15

▶

Cisco

Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products↗2015-06-12

▶

BSD

FreeBSD-SA-15:10.openssl: Multiple OpenSSL vulnerabilities↗2015-06-12

▶

🕵️Threat Intelligence

Tenable

[R7] OpenSSL '20150611' Advisory Affects Tenable Products↗2015-06-30

▶

📄Research Papers

arXiv

One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware↗2022-12-29

▶

💬Community

Bugzilla

CVE-2015-3216 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792 CVE-2015-1791 CVE-2014-8176: OpenSSL multiple security issues [fedora-all]↗2015-06-12

▶

Bugzilla

CVE-2014-8176 OpenSSL: Invalid free in DTLS↗2015-06-05

▶