Memory leak in PolarSSL before 1.2.12 and 1.3.x before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted X.509 certificates. NOTE: this identifier has been SPLIT per ADT3 due to different affected versions. See CVE-2014-9744 for the ClientHello message issue.
oryginał ENAV:N/AC:L/Au:N/C:N/I:N/A:CPolarssl
APPPolarssl1.3.01.3.11.3.21.3.31.3.41.3.51.3.61.3.71.3.8≤ 1.2.11
Powiązane podatności
PolarSSL versions prior to v1.1 use the HAVEGE random number generation algorithm. At its heart, this uses tim...
A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1 due to a weak encryption error when ...
Memory leak in PolarSSL before 1.3.9 allows remote attackers to cause a denial of service (memory consumption)...
The asn1_get_sequence_of function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3....
Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3...