FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openssl -- TLS extension parsing race condition

Affected packages
openssl < 1.0.0_2

Details

VuXML ID 3042c33a-f237-11df-9d02-0018fe623f2b
Discovery 2010-10-08
Entry 2010-11-17

OpenSSL Team reports:

Rob Hulswit has found a flaw in the OpenSSL TLS server extension code parsing which on affected servers can be exploited in a buffer overrun attack.

Any OpenSSL based TLS server is vulnerable if it is multi-threaded and uses OpenSSL's internal caching mechanism. Servers that are multi-process and/or disable internal session caching are NOT affected.

In particular the Apache HTTP server (which never uses OpenSSL internal caching) and Stunnel (which includes its own workaround) are NOT affected.

[source]

References

CVE Name CVE-2010-3864
URL http://openssl.org/news/secadv_20101116.txt

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.