CVE-2010-3864: Race Condition
First published: Wed Nov 03 2010(Updated: )
A race condition flaw has been found in the OpenSSL TLS server extension code parsing, which on affected servers, could lead to arbitrary code execution. All versions of OpenSSL supporting TLS extensions contain this vulnerability including OpenSSL 0.9.8j and later and 1.0.0, 1.0.0a releases. Any OpenSSL based TLS server is vulnerable if it is multi-threaded and uses OpenSSL's internal caching mechanism. Servers that are multi-process and/or disable internal session caching are NOT affected.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenSSL | =0.9.8m | |
| OpenSSL | =0.9.8n | |
| OpenSSL | =0.9.8g | |
| OpenSSL | =0.9.8k | |
| OpenSSL | =0.9.8j | |
| OpenSSL | =0.9.8l | |
| OpenSSL | =1.0.0 | |
| OpenSSL | =0.9.8o | |
| OpenSSL | =0.9.8i | |
| OpenSSL | =0.9.8f | |
| OpenSSL | =1.0.0a | |
| OpenSSL | =0.9.8h |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://openssl.org/news/secadv_20101116.txt
- https://rhn.redhat.com/errata/RHSA-2010-0888.html
- http://secunia.com/advisories/42243
- http://securitytracker.com/id?1024743
- https://bugzilla.redhat.com/show_bug.cgi?id=649304
- http://security.FreeBSD.org/advisories/FreeBSD-SA-10:10.openssl.asc
- http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051255.html
- http://secunia.com/advisories/42336
- http://secunia.com/advisories/42352
- http://secunia.com/advisories/42397
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051237.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051170.html
- http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.668793
- http://secunia.com/advisories/42309
- http://www.debian.org/security/2010/dsa-2125
- http://www.vupen.com/english/advisories/2010/3121
- http://www.vupen.com/english/advisories/2010/3041
- http://blogs.sun.com/security/entry/cve_2010_3864_race_condition
- http://secunia.com/advisories/42413
- http://secunia.com/advisories/42241
- http://www.vupen.com/english/advisories/2010/3097
- http://www.vupen.com/english/advisories/2010/3077
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html
- https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000101.html
- https://lists.balabit.com/pipermail/syslog-ng-announce/2011-January/000102.html
- http://secunia.com/advisories/43312
- http://secunia.com/advisories/44269
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02794777
- http://www.adobe.com/support/security/bulletins/apsb11-11.html
- http://support.apple.com/kb/HT4723
- http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html
- http://marc.info/?l=bugtraq&m=132828103218869&w=2
- http://www.kb.cert.org/vuls/id/737740
- http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564
- http://secunia.com/advisories/57353
- http://marc.info/?l=bugtraq&m=129916880600544&w=2
- http://marc.info/?l=bugtraq&m=130497251507577&w=2
- http://www.securityfocus.com/archive/1/516397/100/0/threaded
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=457804&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=457804&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=653969
Frequently Asked Questions
What is the severity of CVE-2010-3864?
CVE-2010-3864 is classified as a critical severity vulnerability due to its potential for arbitrary code execution.
How do I fix CVE-2010-3864?
To fix CVE-2010-3864, upgrade to a version of OpenSSL that is not affected, such as versions released after the security fix was applied.
Which versions of OpenSSL are affected by CVE-2010-3864?
All versions of OpenSSL that support TLS extensions prior to the security patch are affected, including 0.9.8j and later and 1.0.0 and 1.0.0a releases.
What kind of vulnerability is CVE-2010-3864?
CVE-2010-3864 is a race condition vulnerability found in the OpenSSL TLS server extension code parsing.
Can I exploit CVE-2010-3864 remotely?
Yes, CVE-2010-3864 can potentially be exploited remotely, allowing attackers to execute arbitrary code on affected servers.
- agent/type
- agent/references
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/remedy
- agent/last-modified-date
- agent/author
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-3864
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/openssl
- canonical/openssl
- version/openssl/0.9.8m
- version/openssl/0.9.8n
- version/openssl/0.9.8g
- version/openssl/0.9.8k
- version/openssl/0.9.8j
- version/openssl/0.9.8l
- version/openssl/1.0.0
- version/openssl/0.9.8o
- version/openssl/0.9.8i
- version/openssl/0.9.8f
- version/openssl/1.0.0a
- version/openssl/0.9.8h