ByteOS Network

CVE Vulnerability Details :

CVE-2014-3569

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-24 Dec, 2014 | 11:00

Updated At-06 Aug, 2024 | 10:50

▼CVE Numbering Authority (CNA)

The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.securityfocus.com/bid/71934	vdb-entry x_refsource_BID
http://marc.info/?l=bugtraq&m=142895206924048&w=2	vendor-advisory x_refsource_HP
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html	vendor-advisory x_refsource_SUSE
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl	vendor-advisory x_refsource_CISCO
http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3569.html	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory x_refsource_HP
https://support.apple.com/HT204659	x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html	x_refsource_CONFIRM
https://security-tracker.debian.org/tracker/CVE-2014-3569	x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory x_refsource_HP
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888	x_refsource_CONFIRM
http://www.securitytracker.com/id/1033378	vdb-entry x_refsource_SECTRACK
http://marc.info/?l=bugtraq&m=142721102728110&w=2	vendor-advisory x_refsource_HP
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html	vendor-advisory x_refsource_SUSE
https://www.openssl.org/news/secadv_20150108.txt	x_refsource_CONFIRM
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380	x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDVSA-2015:019	vendor-advisory x_refsource_MANDRIVA
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html	x_refsource_CONFIRM
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679	x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_refsource_CONFIRM
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=b82924741b4bd590da890619be671f4635e46c2b	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html	vendor-advisory x_refsource_APPLE
https://kc.mcafee.com/corporate/index?page=content&id=SB10108	x_refsource_CONFIRM
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=6ce9687b5aba5391fc0de50e18779eb676d0e04d	x_refsource_CONFIRM
https://kc.mcafee.com/corporate/index?page=content&id=SB10102	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html	vendor-advisory x_refsource_SUSE
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory x_refsource_HP
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=144050205101530&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=142496179803395&w=2	vendor-advisory x_refsource_HP
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062	vendor-advisory x_refsource_MANDRIVA
https://support.citrix.com/article/CTX216642	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=144050254401665&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP
http://rt.openssl.org/Ticket/Display.html?id=3571&user=guest&pass=guest	x_refsource_CONFIRM
https://bto.bluecoat.com/security-advisory/sa88	x_refsource_CONFIRM
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=392fa7a952e97d82eac6958c81ed1e256e6b8ca5	x_refsource_CONFIRM
http://www.debian.org/security/2015/dsa-3125	vendor-advisory x_refsource_DEBIAN

Hyperlink: http://www.securityfocus.com/bid/71934

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://marc.info/?l=bugtraq&m=142895206924048&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl

Resource:

vendor-advisory

x_refsource_CISCO

Hyperlink: http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3569.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=144050155601375&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: https://support.apple.com/HT204659

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Resource:

x_refsource_CONFIRM

Hyperlink: https://security-tracker.debian.org/tracker/CVE-2014-3569

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=143748090628601&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securitytracker.com/id/1033378

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://marc.info/?l=bugtraq&m=142721102728110&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://www.openssl.org/news/secadv_20150108.txt

Resource:

x_refsource_CONFIRM

Hyperlink: https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:019

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Resource:

x_refsource_CONFIRM

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=b82924741b4bd590da890619be671f4635e46c2b

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10108

Resource:

x_refsource_CONFIRM

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=6ce9687b5aba5391fc0de50e18779eb676d0e04d

Resource:

x_refsource_CONFIRM

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10102

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://marc.info/?l=bugtraq&m=144050297101809&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=144050205101530&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=142496179803395&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: https://support.citrix.com/article/CTX216642

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=144050254401665&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://rt.openssl.org/Ticket/Display.html?id=3571&user=guest&pass=guest

Resource:

x_refsource_CONFIRM

Hyperlink: https://bto.bluecoat.com/security-advisory/sa88

Resource:

x_refsource_CONFIRM

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=392fa7a952e97d82eac6958c81ed1e256e6b8ca5

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.debian.org/security/2015/dsa-3125

Resource:

vendor-advisory

x_refsource_DEBIAN

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.securityfocus.com/bid/71934	vdb-entry x_refsource_BID x_transferred
http://marc.info/?l=bugtraq&m=142895206924048&w=2	vendor-advisory x_refsource_HP x_transferred
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html	vendor-advisory x_refsource_SUSE x_transferred
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl	vendor-advisory x_refsource_CISCO x_transferred
http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3569.html	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory x_refsource_HP x_transferred
https://support.apple.com/HT204659	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html	x_refsource_CONFIRM x_transferred
https://security-tracker.debian.org/tracker/CVE-2014-3569	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory x_refsource_HP x_transferred
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888	x_refsource_CONFIRM x_transferred
http://www.securitytracker.com/id/1033378	vdb-entry x_refsource_SECTRACK x_transferred
http://marc.info/?l=bugtraq&m=142721102728110&w=2	vendor-advisory x_refsource_HP x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html	vendor-advisory x_refsource_SUSE x_transferred
https://www.openssl.org/news/secadv_20150108.txt	x_refsource_CONFIRM x_transferred
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380	x_refsource_CONFIRM x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2015:019	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html	x_refsource_CONFIRM x_transferred
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_refsource_CONFIRM x_transferred
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=b82924741b4bd590da890619be671f4635e46c2b	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP x_transferred
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html	vendor-advisory x_refsource_APPLE x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10108	x_refsource_CONFIRM x_transferred
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=6ce9687b5aba5391fc0de50e18779eb676d0e04d	x_refsource_CONFIRM x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10102	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html	vendor-advisory x_refsource_SUSE x_transferred
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory x_refsource_HP x_transferred
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=144050205101530&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=142496179803395&w=2	vendor-advisory x_refsource_HP x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062	vendor-advisory x_refsource_MANDRIVA x_transferred
https://support.citrix.com/article/CTX216642	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=144050254401665&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP x_transferred
http://rt.openssl.org/Ticket/Display.html?id=3571&user=guest&pass=guest	x_refsource_CONFIRM x_transferred
https://bto.bluecoat.com/security-advisory/sa88	x_refsource_CONFIRM x_transferred
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=392fa7a952e97d82eac6958c81ed1e256e6b8ca5	x_refsource_CONFIRM x_transferred
http://www.debian.org/security/2015/dsa-3125	vendor-advisory x_refsource_DEBIAN x_transferred

Hyperlink: http://www.securityfocus.com/bid/71934

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142895206924048&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl

Resource:

vendor-advisory

x_refsource_CISCO

x_transferred

Hyperlink: http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-3569.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050155601375&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: https://support.apple.com/HT204659

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://security-tracker.debian.org/tracker/CVE-2014-3569

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=143748090628601&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.securitytracker.com/id/1033378

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142721102728110&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: https://www.openssl.org/news/secadv_20150108.txt

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:019

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=b82924741b4bd590da890619be671f4635e46c2b

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

x_transferred

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10108

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=6ce9687b5aba5391fc0de50e18779eb676d0e04d

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10102

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050297101809&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050205101530&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496179803395&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: https://support.citrix.com/article/CTX216642

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050254401665&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://rt.openssl.org/Ticket/Display.html?id=3571&user=guest&pass=guest

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://bto.bluecoat.com/security-advisory/sa88

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=392fa7a952e97d82eac6958c81ed1e256e6b8ca5

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.debian.org/security/2015/dsa-3125

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References