Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: httpd 2.4.6 DR3
Affects Version/s: httpd 2.4.6 DR1
Component/s: openssl
Labels:

Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1242330
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

httpd 2.4.6 GA

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

A malicious client can trigger an OPENSSL_assert (i.e., an abort) in
servers that both support SSLv2 and enable export cipher suites by sending
a specially crafted SSLv2 CLIENT-MASTER-KEY message.

clones

JWS-222 CVE-2015-0293 openssl: assertion failure in SSLv2 servers [jbews-3.0.0]

Closed

Assignee:: Jean-Frederic Clere

Reporter:: Tim Walsh

Tester:: Karm Karm

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2016/04/14 7:31 AM

Updated:: 2017/03/15 6:49 AM

Resolved:: 2016/04/14 8:03 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates