Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via a crafted TLS packet that is not properly handled during a certain explicit IV calculation.
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL
OpenSSL Project OpenSSL 1.0.0e
OpenSSL Project OpenSSL 1.0.0d
OpenSSL Project OpenSSL 1.0.0c
OpenSSL Project OpenSSL 1.0.0b
OpenSSL Project OpenSSL 1.0.0a
OpenSSL Project OpenSSL 1.0.0 Beta5
OpenSSL Project OpenSSL 1.0.0 Beta4
OpenSSL Project OpenSSL 1.0.0 Beta3
OpenSSL Project OpenSSL 1.0.0 Beta2
OpenSSL Project OpenSSL 1.0.0 Beta1
OpenSSL Project OpenSSL 1.0.0
OpenSSL Project OpenSSL 0.9.8w
OpenSSL Project OpenSSL 0.9.8v
OpenSSL Project OpenSSL 0.9.8u
OpenSSL Project OpenSSL 0.9.8t
OpenSSL Project OpenSSL 0.9.8s
OpenSSL Project OpenSSL 0.9.8r
OpenSSL Project OpenSSL 0.9.8q
OpenSSL Project OpenSSL 0.9.8p
OpenSSL Project OpenSSL 0.9.8o
OpenSSL Project OpenSSL 0.9.8n
OpenSSL Project OpenSSL 0.9.8m Beta1
OpenSSL Project OpenSSL 0.9.8m
OpenSSL Project OpenSSL 0.9.8l
OpenSSL Project OpenSSL 0.9.8k
OpenSSL Project OpenSSL 0.9.8j
OpenSSL Project OpenSSL 0.9.8i
OpenSSL Project OpenSSL 0.9.8h
OpenSSL Project OpenSSL 0.9.8g
OpenSSL Project OpenSSL 0.9.8f
OpenSSL Project OpenSSL 0.9.8e
OpenSSL Project OpenSSL 0.9.8d
OpenSSL Project OpenSSL 0.9.8c
OpenSSL Project OpenSSL 0.9.8b
OpenSSL Project OpenSSL 0.9.8a
OpenSSL Project OpenSSL 0.9.8
OpenSSL Project OpenSSL 0.9.7m
OpenSSL Project OpenSSL 0.9.7l
OpenSSL Project OpenSSL 0.9.7k
OpenSSL Project OpenSSL 0.9.7j
OpenSSL Project OpenSSL 0.9.7i
OpenSSL Project OpenSSL 0.9.7h
OpenSSL Project OpenSSL 0.9.7g
OpenSSL Project OpenSSL 0.9.7f
OpenSSL Project OpenSSL 0.9.7e
OpenSSL Project OpenSSL 0.9.7d
OpenSSL Project OpenSSL 0.9.7c
OpenSSL Project OpenSSL 0.9.7b
OpenSSL Project OpenSSL 0.9.7a
OpenSSL Project OpenSSL 0.9.7 Beta6
OpenSSL Project OpenSSL 0.9.7 Beta5
OpenSSL Project OpenSSL 0.9.7 Beta4
OpenSSL Project OpenSSL 0.9.7 beta3
OpenSSL Project OpenSSL 0.9.7 beta2
OpenSSL Project OpenSSL 0.9.7 beta1
OpenSSL Project OpenSSL 0.9.7
OpenSSL Project OpenSSL 0.9.6m
OpenSSL Project OpenSSL 0.9.6l
OpenSSL Project OpenSSL 0.9.6k
OpenSSL Project OpenSSL 0.9.6j
OpenSSL Project OpenSSL 0.9.6i
OpenSSL Project OpenSSL 0.9.6h
OpenSSL Project OpenSSL 0.9.6g
OpenSSL Project OpenSSL 0.9.6f
OpenSSL Project OpenSSL 0.9.6e
OpenSSL Project OpenSSL 0.9.6d
OpenSSL Project OpenSSL 0.9.6c
OpenSSL Project OpenSSL 0.9.6b
OpenSSL Project OpenSSL 0.9.6a Beta3
OpenSSL Project OpenSSL 0.9.6a Beta2
OpenSSL Project OpenSSL 0.9.6a Beta1
OpenSSL Project OpenSSL 0.9.6a
OpenSSL Project OpenSSL 0.9.6 Beta3
OpenSSL Project OpenSSL 0.9.6 Beta2
OpenSSL Project OpenSSL 0.9.6 Beta1
OpenSSL Project OpenSSL 0.9.6
OpenSSL Project OpenSSL 0.9.5a Beta2
OpenSSL Project OpenSSL 0.9.5a Beta1
OpenSSL Project OpenSSL 0.9.5a
OpenSSL Project OpenSSL 0.9.5 Beta2
OpenSSL Project OpenSSL 0.9.5 Beta1
OpenSSL Project OpenSSL 0.9.5
OpenSSL Project OpenSSL 0.9.4
OpenSSL Project OpenSSL 0.9.3a
OpenSSL Project OpenSSL 0.9.3
OpenSSL Project OpenSSL 0.9.2b
OpenSSL Project OpenSSL 0.9.1c
OpenSSL Project OpenSSL 1.0.0f
OpenSSL Project OpenSSL 1.0.0g
OpenSSL Project OpenSSL 1.0.0h
OpenSSL Project OpenSSL 1.0.1
OpenSSL Project OpenSSL 1.0.1 Beta1
OpenSSL Project OpenSSL 1.0.1 Beta2
OpenSSL Project OpenSSL 1.0.1 Beta3
OpenSSL Project OpenSSL 1.0.1a
OpenSSL Project OpenSSL 1.0.1b
Red Hat openssl 0.9.6.15
Red Hat openssl 0.9.6b3
Red Hat openssl 0.9.7a2