ByteOS Network

CVE Vulnerability Details :

CVE-2016-8610

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-13 Nov, 2017 | 22:00

Updated At-06 Aug, 2024 | 02:27

▼CVE Numbering Authority (CNA)

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients.

Affected Products

Vendor

OpenSSL

Product

OpenSSL

Versions

Affected

All 0.9.8
All 1.0.1
1.0.2 through 1.0.2h
1.1.0

Problem Types

Type	CWE ID	Description
CWE	CWE-400	CWE-400

Type: CWE

CWE ID: CWE-400

Description: CWE-400

References

Hyperlink	Resource
http://www.securityfocus.com/bid/93841	vdb-entry x_refsource_BID
http://rhn.redhat.com/errata/RHSA-2017-1659.html	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1658	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1801	vendor-advisory x_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2017-0286.html	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1413	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2494	vendor-advisory x_refsource_REDHAT
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:35.openssl.asc	vendor-advisory x_refsource_FREEBSD
https://access.redhat.com/errata/RHSA-2017:1414	vendor-advisory x_refsource_REDHAT
http://seclists.org/oss-sec/2016/q4/224	mailing-list x_refsource_MLIST
http://rhn.redhat.com/errata/RHSA-2017-0574.html	vendor-advisory x_refsource_REDHAT
https://www.debian.org/security/2017/dsa-3773	vendor-advisory x_refsource_DEBIAN
http://rhn.redhat.com/errata/RHSA-2017-1415.html	vendor-advisory x_refsource_REDHAT
http://www.securitytracker.com/id/1037084	vdb-entry x_refsource_SECTRACK
https://access.redhat.com/errata/RHSA-2017:1802	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2493	vendor-advisory x_refsource_REDHAT
https://www.oracle.com/security-alerts/cpuapr2020.html	x_refsource_MISC
https://www.oracle.com/security-alerts/cpujul2020.html	x_refsource_MISC
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	x_refsource_MISC
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html	x_refsource_MISC
https://www.oracle.com/security-alerts/cpujan2020.html	x_refsource_MISC
https://security.netapp.com/advisory/ntap-20171130-0001/	x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8610	x_refsource_CONFIRM
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=af58be768ebb690f78530f796e92b8ae5c9a4401	x_refsource_CONFIRM
https://security.360.cn/cve/CVE-2016-8610/	x_refsource_MISC
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03897en_us	x_refsource_CONFIRM
https://security.paloaltonetworks.com/CVE-2016-8610	x_refsource_CONFIRM
https://www.oracle.com/security-alerts/cpuoct2020.html	x_refsource_MISC

Hyperlink: http://www.securityfocus.com/bid/93841

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://rhn.redhat.com/errata/RHSA-2017-1659.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://access.redhat.com/errata/RHSA-2017:1658

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://access.redhat.com/errata/RHSA-2017:1801

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://rhn.redhat.com/errata/RHSA-2017-0286.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://access.redhat.com/errata/RHSA-2017:1413

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://access.redhat.com/errata/RHSA-2017:2494

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://security.FreeBSD.org/advisories/FreeBSD-SA-16:35.openssl.asc

Resource:

vendor-advisory

x_refsource_FREEBSD

Hyperlink: https://access.redhat.com/errata/RHSA-2017:1414

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://seclists.org/oss-sec/2016/q4/224

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://rhn.redhat.com/errata/RHSA-2017-0574.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://www.debian.org/security/2017/dsa-3773

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://rhn.redhat.com/errata/RHSA-2017-1415.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.securitytracker.com/id/1037084

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: https://access.redhat.com/errata/RHSA-2017:1802

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://access.redhat.com/errata/RHSA-2017:2493

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: https://www.oracle.com/security-alerts/cpuapr2020.html

Resource:

x_refsource_MISC

Hyperlink: https://www.oracle.com/security-alerts/cpujul2020.html

Resource:

x_refsource_MISC

Hyperlink: https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Resource:

x_refsource_MISC

Hyperlink: https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Resource:

x_refsource_MISC

Hyperlink: https://www.oracle.com/security-alerts/cpujan2020.html

Resource:

x_refsource_MISC

Hyperlink: https://security.netapp.com/advisory/ntap-20171130-0001/

Resource:

x_refsource_CONFIRM

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8610

Resource:

x_refsource_CONFIRM

Hyperlink: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=af58be768ebb690f78530f796e92b8ae5c9a4401

Resource:

x_refsource_CONFIRM

Hyperlink: https://security.360.cn/cve/CVE-2016-8610/

Resource:

x_refsource_MISC

Hyperlink: https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03897en_us

Resource:

x_refsource_CONFIRM

Hyperlink: https://security.paloaltonetworks.com/CVE-2016-8610

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.oracle.com/security-alerts/cpuoct2020.html

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.securityfocus.com/bid/93841	vdb-entry x_refsource_BID x_transferred
http://rhn.redhat.com/errata/RHSA-2017-1659.html	vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/errata/RHSA-2017:1658	vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/errata/RHSA-2017:1801	vendor-advisory x_refsource_REDHAT x_transferred
http://rhn.redhat.com/errata/RHSA-2017-0286.html	vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/errata/RHSA-2017:1413	vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/errata/RHSA-2017:2494	vendor-advisory x_refsource_REDHAT x_transferred
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:35.openssl.asc	vendor-advisory x_refsource_FREEBSD x_transferred
https://access.redhat.com/errata/RHSA-2017:1414	vendor-advisory x_refsource_REDHAT x_transferred
http://seclists.org/oss-sec/2016/q4/224	mailing-list x_refsource_MLIST x_transferred
http://rhn.redhat.com/errata/RHSA-2017-0574.html	vendor-advisory x_refsource_REDHAT x_transferred
https://www.debian.org/security/2017/dsa-3773	vendor-advisory x_refsource_DEBIAN x_transferred
http://rhn.redhat.com/errata/RHSA-2017-1415.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.securitytracker.com/id/1037084	vdb-entry x_refsource_SECTRACK x_transferred
https://access.redhat.com/errata/RHSA-2017:1802	vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/errata/RHSA-2017:2493	vendor-advisory x_refsource_REDHAT x_transferred
https://www.oracle.com/security-alerts/cpuapr2020.html	x_refsource_MISC x_transferred
https://www.oracle.com/security-alerts/cpujul2020.html	x_refsource_MISC x_transferred
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	x_refsource_MISC x_transferred
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html	x_refsource_MISC x_transferred
https://www.oracle.com/security-alerts/cpujan2020.html	x_refsource_MISC x_transferred
https://security.netapp.com/advisory/ntap-20171130-0001/	x_refsource_CONFIRM x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8610	x_refsource_CONFIRM x_transferred
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=af58be768ebb690f78530f796e92b8ae5c9a4401	x_refsource_CONFIRM x_transferred
https://security.360.cn/cve/CVE-2016-8610/	x_refsource_MISC x_transferred
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03897en_us	x_refsource_CONFIRM x_transferred
https://security.paloaltonetworks.com/CVE-2016-8610	x_refsource_CONFIRM x_transferred
https://www.oracle.com/security-alerts/cpuoct2020.html	x_refsource_MISC x_transferred