FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

OpenSSL -- TLS 1.1, 1.2 denial of service

Affected packages
openssl < 1.0.1_6

Details

VuXML ID 00b0d8cd-7097-11e2-98d9-003067c2616f
Discovery 2013-02-05
Entry 2013-02-06

OpenSSL security team reports:

A flaw in the OpenSSL handling of CBC mode ciphersuites in TLS 1.1 and TLS 1.2 on AES-NI supporting platforms can be exploited in a DoS attack.

A flaw in the OpenSSL handling of OCSP response verification can be exploited in a denial of service attack.

References

CVE Name CVE-2012-2686
CVE Name CVE-2013-0166
CVE Name CVE-2013-0169
URL http://www.openssl.org/news/secadv_20120510.txt