CVE-2015-1787

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.0.2 through 1.0.2a (excluding 1.0.2a)

Description The issue allows remote attackers to cause a denial of service (daemon crash) via a ClientKeyExchange message with a length of zero, when client authentication and an ephemeral Diffie-Hellman ciphersuite are enabled. This is due to insufficient input validation in the ssl3 get client key exchange function. The vulnerability can be exploited by sending a ClientKeyExchange message of zero length during the authentication procedure when the Diffie-Hellman protocol is enabled.

Recommendations For OpenSSL versions 1.0.2 through 1.0.2a (excluding 1.0.2a), update to version 1.0.2a or later to resolve the issue. As a temporary workaround, consider disabling the ephemeral Diffie-Hellman ciphersuite until a patch is available. Restrict access to the ssl3 get client key exchange function to minimize the risk of exploitation.