CVE-2014-0198 — MEDIUM (4.3)

Q: How severe is CVE-2014-0198?

CVE-2014-0198 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-0198?

Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Mariadb Mariadb, Fedoraproject Fedora, Debian Debian Linux, Opensuse Opensuse.

Vulnerability Description

The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Openssl	Openssl	>= 1.0.0, <= 1.0.1g
Mariadb	Mariadb	>= 10.0.0, < 10.0.13
Fedoraproject	Fedora	19
Debian	Debian Linux	6.0
Opensuse	Opensuse	12.3
Suse	Linux Enterprise Desktop	12
Suse	Linux Enterprise Server	12
Suse	Linux Enterprise Software Development Kit	12
Suse	Linux Enterprise Workstation Extension	12

Related Weaknesses (CWE)

CWE-476

References

http://advisories.mageia.org/MGASA-2014-0204.htmlThird Party Advisory
http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.ascThird Party Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629Third Party Advisory
http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.htmMailing ListThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.htmMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-05/msg00036.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2014-05/msg00037.htmlMailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140389274407904&w=2Mailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140389355508263&w=2Mailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140431828824371&w=2Mailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140448122410568&w=2Mailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140544599631400&w=2Mailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=140621259019789&w=2Mailing ListThird Party Advisory

FAQ

What is CVE-2014-0198?

CVE-2014-0198 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows r...

How severe is CVE-2014-0198?

CVE-2014-0198 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-0198?

Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Mariadb Mariadb, Fedoraproject Fedora, Debian Debian Linux, Opensuse Opensuse.