CVE-2014-8176

Name of the Vulnerable Software and Affected Versions OpenSSL versions 0.9.8 through 0.9.8za OpenSSL versions 1.0.0 through 1.0.0m OpenSSL versions 1.0.1 through 1.0.1h

Description The issue arises from the dtls1 clear queues function in ssl/d1 lib.c, which frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message. This allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data. If a DTLS peer receives application data between the ChangeCipherSpec and Finished messages, buffering of such data may cause an invalid free, resulting in a segmentation fault or potentially, memory corruption.

Recommendations For OpenSSL versions 0.9.8 through 0.9.8za, update to version 0.9.8za or later. For OpenSSL versions 1.0.0 through 1.0.0m, update to version 1.0.0m or later. For OpenSSL versions 1.0.1 through 1.0.1h, update to version 1.0.1h or later. As a temporary workaround, consider restricting the reception of application data between ChangeCipherSpec and Finished messages to minimize the risk of exploitation.