Dmitry Sobinov

**Name of the Vulnerable Software and Affected Versions** OpenSSL versions 1.0.0 through 1.0.0l OpenSSL versions 1.0.1 through 1.0.1f **Description** The DTLS retransmission implementation in OpenSSL does not properly maintain data structures for digest and encryption contexts. This might allow man-in-the-middle attackers to trigger the use of a different context and cause a denial of service by interfering with packet delivery. The issue is related to the files ssl/d1 both.c and ssl/t1 enc.c. Exploitation of the vulnerability can lead to a disruption of confidentiality, integrity, and availability of protected information and can be performed remotely. **Recommendations** For OpenSSL versions 1.0.0 through 1.0.0l, update to version 1.0.0l or later. For OpenSSL versions 1.0.1 through 1.0.1f, update to version 1.0.1f or later. As a temporary workaround, consider restricting access to DTLS handling to minimize the risk of exploitation.