OpenSSL Resource Management Errors Vulnerability - CVE-2014-0221 - Vulnerability Database

OpenSSL Resource Management Errors Vulnerability - CVE-2014-0221

Medium

Reference: CVE-2014-0221

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-0221

Title: OpenSSL Resource Management Errors Vulnerability

Overview:

The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za 1.0.0 before 1.0.0m and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via a DTLS hello message in an invalid DTLS handshake.