OpenSSL TLS Server is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a heap overflow. With a specially crafted request, a remote attacker can cause a denial of service and potentially compromise an application using the library.

Upgrade to version 0.9.8p or 1.0.0b or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1024743
• ISS X-Force ID: 1026638
• CVE ID: 2010-3864 (see also: NVD)
• Secunia Advisory ID: 42241 42243 42296 42309 42336 42352 42397 42413 43082 43312 43600 43671 44269 44533 44589 45054 46342 46742 47807 47863 47868 52019 52543 52694 52869 52892
• Related OSVDB ID: 69265 72329
• CERT VU: 737740
• Vendor Specific Advisory URL: http://aix.software.ibm.com/aix/efixes/security/openssl_advisory2.asc
  http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03179825
  http://security.freebsd.org/advisories/FreeBSD-SA-10:10.openssl.asc
  http://security.gentoo.org/glsa/glsa-201110-01.xml
  http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793
  http://support.apple.com/kb/HT4723
  http://www.adobe.com/support/security/bulletins/apsb11-11.html
  http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_sterling_connect_enterprise_for_unix_is_affected_by_multiple_vulnerabilities_in_openssl12
  http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02737002
  http://www.ubuntu.com/usn/usn-1018-1
  http://www.vmware.com/security/advisories/VMSA-2011-0003.html
  https://kb.bluecoat.com/index?page=content&id=SA68
  https://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_infosphere_balanced_warehouse_c3000_c4000_and_d5100_and_ibm_smart_analytics_system_1050_2050_5600_and_5710_are_affected_by_vulnerabilities_in_openssl16
  https://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02824483
• Vendor Specific News/Changelog Entry: http://lists.debian.org/debian-security-announce/2010/msg00176.html
  http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051170.html
  http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051237.html
  http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051255.html
  http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html
  http://openssl.org/news/secadv_20101116.txt
  http://security.gentoo.org/glsa/glsa-201110-01.xml
  http://www.ibm.com/support/docview.wss?uid=nas12088ececb530423186257b410072035e
  http://www.ibm.com/support/docview.wss?uid=swg21627934
  http://www.ibm.com/support/docview.wss?uid=swg21633107
  https://bugzilla.redhat.com/show_bug.cgi?id=649304
  https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000101.html
  https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000102.html
  https://www.ibm.com/support/docview.wss?uid=swg21619837
• Mail List Post: http://seclists.org/bugtraq/2011/Apr/192
  http://seclists.org/bugtraq/2011/May/68
  http://seclists.org/bugtraq/2012/Feb/13
  http://seclists.org/fulldisclosure/2011/Oct/410
• Vendor URL: http://www.openssl.org/
• Other Advisory URL: https://my.stonesoft.com/support/attachment.do?docid=6410&file=SSL-VPN_1.4.5-RLNT.pdf
• RedHat RHSA: RHSA-2010:0888

• Rob Hulswit