Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: JWS 3.0.3 DR3
Affects Version/s: JWS 3.0.0 GA
Component/s: openssl
Labels:
None

Affects:

Release Notes
Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1242330
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Release Note Status:
Not Yet Documented
Target Release:

JWS 3.0.2 GA

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

A malicious client can trigger an OPENSSL_assert (i.e., an abort) in
servers that both support SSLv2 and enable export cipher suites by sending
a specially crafted SSLv2 CLIENT-MASTER-KEY message.

is cloned by

JBCS-43 CVE-2015-0293 openssl: assertion failure in SSLv2 servers [jbews-3.0.0]

Closed

Assignee:: Jean-Frederic Clere

Reporter:: Tim Walsh

Tester:: Karm Karm

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2015/09/03 3:48 AM

Updated:: 2021/10/24 6:38 AM

Resolved:: 2015/09/03 5:59 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates