Vulnerabilidad en la función ssl_parse_serverhello_tlsext en OpenSSL (CVE-2014-3509)
Gravedad CVSS v2.0:
MEDIA
Tipo:
CWE-362
Ejecución concurrente utilizando recursos compartidos con una incorrecta sincronización (Condición de carrera)
Fecha de publicación:
13/08/2014
Última modificación:
12/04/2025
Descripción
Condición de carrera en la función ssl_parse_serverhello_tlsext en t1_lib.c en OpenSSL 1.0.0 anterior a 1.0.0n y 1.0.1 anterior a 1.0.1i, cuando multihilos y la redención de la sesión están utilizados, permite a servidores SSL remotos causar una denegación de servicio (sobrescritura de memoria y caída de la aplicación del cliente) o posiblemente tener otro impacto no especificado mediante el envió de datos Elliptic Curve (EC) Supported Point Formats Extension.
Impacto
Puntuación base 2.0
6.80
Gravedad 2.0
MEDIA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:openssl:openssl:1.0.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0:beta1:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0:beta2:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0:beta3:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0:beta4:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0:beta5:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0a:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0b:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0c:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0d:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0e:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0f:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0g:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0h:*:*:*:*:*:*:* | ||
| cpe:2.3:a:openssl:openssl:1.0.0i:*:*:*:*:*:*:* |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc
- http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc
- http://linux.oracle.com/errata/ELSA-2014-1052.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
- http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html
- http://marc.info/?l=bugtraq&m=142350350616251&w=2
- http://marc.info/?l=bugtraq&m=142350350616251&w=2
- http://marc.info/?l=bugtraq&m=142495837901899&w=2
- http://marc.info/?l=bugtraq&m=142495837901899&w=2
- http://marc.info/?l=bugtraq&m=142624590206005&w=2
- http://marc.info/?l=bugtraq&m=142660345230545&w=2
- http://marc.info/?l=bugtraq&m=142660345230545&w=2
- http://marc.info/?l=bugtraq&m=142791032306609&w=2
- http://marc.info/?l=bugtraq&m=143290437727362&w=2
- http://marc.info/?l=bugtraq&m=143290522027658&w=2
- http://rhn.redhat.com/errata/RHSA-2015-0197.html
- http://secunia.com/advisories/58962
- http://secunia.com/advisories/59700
- http://secunia.com/advisories/59710
- http://secunia.com/advisories/59756
- http://secunia.com/advisories/60022
- http://secunia.com/advisories/60221
- http://secunia.com/advisories/60493
- http://secunia.com/advisories/60684
- http://secunia.com/advisories/60803
- http://secunia.com/advisories/60917
- http://secunia.com/advisories/60921
- http://secunia.com/advisories/60938
- http://secunia.com/advisories/61017
- http://secunia.com/advisories/61100
- http://secunia.com/advisories/61139
- http://secunia.com/advisories/61184
- http://secunia.com/advisories/61775
- http://secunia.com/advisories/61959
- http://security.gentoo.org/glsa/glsa-201412-39.xml
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240
- http://www-01.ibm.com/support/docview.wss?uid=swg21682293
- http://www-01.ibm.com/support/docview.wss?uid=swg21683389
- http://www-01.ibm.com/support/docview.wss?uid=swg21686997
- http://www.debian.org/security/2014/dsa-2998
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm
- http://www.mandriva.com/security/advisories?name=MDVSA-2014%3A158
- http://www.securityfocus.com/bid/69084
- http://www.securitytracker.com/id/1030693
- https://bugzilla.redhat.com/show_bug.cgi?id=1127498
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95159
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba%3Dcommit%3Bh%3Dfb0bc2b273bcc2d5401dd883fe869af4fc74bb21
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
- https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html
- https://support.citrix.com/article/CTX216642
- https://techzone.ergon.ch/CVE-2014-3511
- https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc
- https://www.openssl.org/news/secadv_20140806.txt
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2014-008.txt.asc
- http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc
- http://linux.oracle.com/errata/ELSA-2014-1052.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
- http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
- http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html
- http://marc.info/?l=bugtraq&m=142350350616251&w=2
- http://marc.info/?l=bugtraq&m=142350350616251&w=2
- http://marc.info/?l=bugtraq&m=142495837901899&w=2
- http://marc.info/?l=bugtraq&m=142495837901899&w=2
- http://marc.info/?l=bugtraq&m=142624590206005&w=2
- http://marc.info/?l=bugtraq&m=142660345230545&w=2
- http://marc.info/?l=bugtraq&m=142660345230545&w=2
- http://marc.info/?l=bugtraq&m=142791032306609&w=2
- http://marc.info/?l=bugtraq&m=143290437727362&w=2
- http://marc.info/?l=bugtraq&m=143290522027658&w=2
- http://rhn.redhat.com/errata/RHSA-2015-0197.html
- http://secunia.com/advisories/58962
- http://secunia.com/advisories/59700
- http://secunia.com/advisories/59710
- http://secunia.com/advisories/59756
- http://secunia.com/advisories/60022
- http://secunia.com/advisories/60221
- http://secunia.com/advisories/60493
- http://secunia.com/advisories/60684
- http://secunia.com/advisories/60803
- http://secunia.com/advisories/60917
- http://secunia.com/advisories/60921
- http://secunia.com/advisories/60938
- http://secunia.com/advisories/61017
- http://secunia.com/advisories/61100
- http://secunia.com/advisories/61139
- http://secunia.com/advisories/61184
- http://secunia.com/advisories/61775
- http://secunia.com/advisories/61959
- http://security.gentoo.org/glsa/glsa-201412-39.xml
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240
- http://www-01.ibm.com/support/docview.wss?uid=swg21682293
- http://www-01.ibm.com/support/docview.wss?uid=swg21683389
- http://www-01.ibm.com/support/docview.wss?uid=swg21686997
- http://www.debian.org/security/2014/dsa-2998
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm
- http://www.mandriva.com/security/advisories?name=MDVSA-2014%3A158
- http://www.securityfocus.com/bid/69084
- http://www.securitytracker.com/id/1030693
- https://bugzilla.redhat.com/show_bug.cgi?id=1127498
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95159
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba%3Dcommit%3Bh%3Dfb0bc2b273bcc2d5401dd883fe869af4fc74bb21
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
- https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html
- https://support.citrix.com/article/CTX216642
- https://techzone.ergon.ch/CVE-2014-3511
- https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc
- https://www.openssl.org/news/secadv_20140806.txt