CVE-2014-5139: Null Pointer Dereference
First published: Wed Aug 13 2014(Updated: )
The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a ServerHello message that includes an SRP ciphersuite without the required negotiation of that ciphersuite with the client.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenSSL libcrypto | =1.0.1 | |
| OpenSSL libcrypto | =1.0.1-beta1 | |
| OpenSSL libcrypto | =1.0.1-beta2 | |
| OpenSSL libcrypto | =1.0.1-beta3 | |
| OpenSSL libcrypto | =1.0.1a | |
| OpenSSL libcrypto | =1.0.1b | |
| OpenSSL libcrypto | =1.0.1c | |
| OpenSSL libcrypto | =1.0.1d | |
| OpenSSL libcrypto | =1.0.1e | |
| OpenSSL libcrypto | =1.0.1f | |
| OpenSSL libcrypto | =1.0.1g | |
| OpenSSL libcrypto | =1.0.1h |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://aix.software.ibm.com/aix/efixes/security/openssl_advisory10.asc
- http://lists.opensuse.org/opensuse-updates/2014-08/msg00036.html
- http://marc.info/?l=bugtraq&m=142350350616251&w=2
- http://marc.info/?l=bugtraq&m=142495837901899&w=2
- http://marc.info/?l=bugtraq&m=142624590206005&w=2
- http://marc.info/?l=bugtraq&m=142624619906067
- http://marc.info/?l=bugtraq&m=142624619906067&w=2
- http://marc.info/?l=bugtraq&m=142624679706236&w=2
- http://marc.info/?l=bugtraq&m=142624719706349&w=2
- http://marc.info/?l=bugtraq&m=142660345230545&w=2
- http://marc.info/?l=bugtraq&m=142791032306609&w=2
- http://marc.info/?l=bugtraq&m=143290437727362&w=2
- http://marc.info/?l=bugtraq&m=143290522027658&w=2
- http://secunia.com/advisories/59700
- http://secunia.com/advisories/59710
- http://secunia.com/advisories/59756
- http://secunia.com/advisories/60022
- http://secunia.com/advisories/60221
- http://secunia.com/advisories/60493
- http://secunia.com/advisories/60803
- http://secunia.com/advisories/60810
- http://secunia.com/advisories/60917
- http://secunia.com/advisories/60921
- http://secunia.com/advisories/61017
- http://secunia.com/advisories/61100
- http://secunia.com/advisories/61171
- http://secunia.com/advisories/61184
- http://secunia.com/advisories/61392
- http://secunia.com/advisories/61775
- http://secunia.com/advisories/61959
- http://security.gentoo.org/glsa/glsa-201412-39.xml
- http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15567.html
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1020240
- http://www-01.ibm.com/support/docview.wss?uid=swg21682293
- http://www-01.ibm.com/support/docview.wss?uid=swg21683389
- http://www-01.ibm.com/support/docview.wss?uid=swg21686997
- http://www.debian.org/security/2014/dsa-2998
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-372998.htm
- http://www.securityfocus.com/bid/69077
- http://www.securitytracker.com/id/1030693
- http://www.tenable.com/security/tns-2014-06
- https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=80bd7b41b30af6ee96f519e629463583318de3b0
- https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=83764a989dcc87fbea337da5f8f86806fe767b7e
- https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-September/000196.html
- https://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc
- https://www.openssl.org/news/secadv_20140806.txt
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=80bd7b41b30af6ee96f519e629463583318de3b0
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=83764a989dcc87fbea337da5f8f86806fe767b7e
Frequently Asked Questions
What is the severity of CVE-2014-5139?
CVE-2014-5139 is classified as a high severity vulnerability due to its potential to cause a denial of service.
How do I fix CVE-2014-5139?
To fix CVE-2014-5139, you should upgrade OpenSSL to version 1.0.1i or later.
What types of systems are affected by CVE-2014-5139?
CVE-2014-5139 affects all versions of OpenSSL 1.0.1 prior to 1.0.1i, including beta releases.
What is the impact of CVE-2014-5139 on applications?
CVE-2014-5139 can lead to client application crashes due to a null pointer dereference.
Is CVE-2014-5139 related to any specific ciphersuites?
Yes, CVE-2014-5139 is specifically related to SRP ciphersuites in the SSL ServerHello message.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/openssl
- canonical/openssl libcrypto
- version/openssl libcrypto/1.0.1
- version/openssl libcrypto/1.0.1-beta1
- version/openssl libcrypto/1.0.1-beta2
- version/openssl libcrypto/1.0.1-beta3
- version/openssl libcrypto/1.0.1a
- version/openssl libcrypto/1.0.1b
- version/openssl libcrypto/1.0.1c
- version/openssl libcrypto/1.0.1d
- version/openssl libcrypto/1.0.1e
- version/openssl libcrypto/1.0.1f
- version/openssl libcrypto/1.0.1g
- version/openssl libcrypto/1.0.1h