Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > CVE-2008-0891
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
CVE Reference: CVE-2008-0891
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2008-0891

Description:
Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a crafted packet. NOTE: some of these details are obtained from third party information.

CVE Status:
Candidate

References:

UBUNTU
  http://www.ubuntu.com/usn/usn-620-1

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.562004

SAID
  Secunia Advisory: SA30825
  Secunia Advisory: SA30405
  Secunia Advisory: SA31288
  Secunia Advisory: SA31228
  Secunia Advisory: SA30868

GENTOO
  http://security.gentoo.org/glsa/glsa-200806-08.xml

CONFIRM
  http://sourceforge.net/project/shownotes.php?release_id=615606
  http://www.openssl.org/news/secadv_20080528.txt

CERT-VN
  661475

BID
  29405


Return to the previous page.


Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008