CVE-2012-0050

EPSS 3.3%

openssl - out-of-bounds read

Published: 1/19/2012Modified: 4/28/2026

Also known as:DEBIAN-CVE-2012-0050

Description

OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.

Affected packages (2)

Debian/opensslfrom 0, < 1.0.0g-1
Debian/opensslfrom 0, < 0.9.8g-15+lenny16

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-0050