CVE Vulnerabilities

CVE-2014-9744

Published: Aug 24, 2015 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Memory leak in PolarSSL before 1.3.9 allows remote attackers to cause a denial of service (memory consumption) via a large number of ClientHello messages. NOTE: this identifier was SPLIT from CVE-2014-8628 per ADT3 due to different affected versions.

Affected Software

Name Vendor Start Version End Version
Opensuse Opensuse 13.2 (including) 13.2 (including)
Mbedtls Ubuntu upstream *
Polarssl Ubuntu precise *
Polarssl Ubuntu trusty *
Polarssl Ubuntu upstream *

References