CVE-2011-0014
Description
ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through 1.0.0c allows remote attackers to cause a denial of service (crash), and possibly obtain sensitive information in applications that use OpenSSL, via a malformed ClientHello handshake message that triggers an out-of-bounds memory access, aka OCSP stapling vulnerability.
Risk Information
Base Score
9.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
1.196
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2011-0014 are fixed in OpenSSL (x64) 0.9.8r | Windows |
| Vulnerabilities CVE-2011-0014 are fixed in OpenSSL (x64) 1.0.0d | Windows |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-debugsource-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Server 12-SP1 ) libqt4-devel-doc-debuginfo-4.8.6-7.3.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Server 12-SP1 ) libqt4-devel-doc-debugsource-4.8.6-7.3.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-qt3support-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-qt3support-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-qt3support-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-qt3support-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-mysql-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-mysql-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-mysql-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-mysql-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-plugins-debugsource-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-postgresql-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-postgresql-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-postgresql-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-postgresql-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-sqlite-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-sqlite-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-sqlite-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-sqlite-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-unixODBC-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-unixODBC-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-unixODBC-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-sql-unixODBC-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-x11-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-x11-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-x11-debuginfo-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Desktop 12-SP1 ) libqt4-x11-debuginfo-32bit-4.8.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Server 12-SP1 ) qt4-x11-tools-4.8.6-7.3.x86_64.rpm | Linux |
| SUSE-SU-403 Forbidden-1(SUSE Linux Enterprise Server 12-SP1 ) qt4-x11-tools-debuginfo-4.8.6-7.3.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234