CVE-2014-8176

Summary

CVE	CVE-2014-8176
State	PUBLISHED
Assigner	redhat
Source Priority	CVE Program / NVD first with legacy fallback
Published	2015-06-12 19:59:00 UTC
Updated	2026-05-06 22:30:45 UTC
Description	The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive between a ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unexpected application data.

Risk And Classification

Primary CVSS: v2.0 7.5 from [email protected]

AV:N/AC:L/Au:N/C:P/I:P/A:P

Problem Types: CWE-119 | n/a

CVSS v2.0 Breakdown

Access Vector

Network

Access Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Openssl	Openssl	1.0.0	All	All	All
Application	Openssl	Openssl	1.0.0	beta1	All	All
Application	Openssl	Openssl	1.0.0	beta2	All	All
Application	Openssl	Openssl	1.0.0	beta3	All	All
Application	Openssl	Openssl	1.0.0	beta4	All	All
Application	Openssl	Openssl	1.0.0	beta5	All	All
Application	Openssl	Openssl	1.0.0a	All	All	All
Application	Openssl	Openssl	1.0.0b	All	All	All
Application	Openssl	Openssl	1.0.0c	All	All	All
Application	Openssl	Openssl	1.0.0d	All	All	All
Application	Openssl	Openssl	1.0.0e	All	All	All
Application	Openssl	Openssl	1.0.0f	All	All	All
Application	Openssl	Openssl	1.0.0g	All	All	All
Application	Openssl	Openssl	1.0.0h	All	All	All
Application	Openssl	Openssl	1.0.0i	All	All	All
Application	Openssl	Openssl	1.0.0j	All	All	All
Application	Openssl	Openssl	1.0.0k	All	All	All
Application	Openssl	Openssl	1.0.0l	All	All	All
Application	Openssl	Openssl	1.0.1	All	All	All
Application	Openssl	Openssl	1.0.1	beta1	All	All
Application	Openssl	Openssl	1.0.1	beta2	All	All
Application	Openssl	Openssl	1.0.1	beta3	All	All
Application	Openssl	Openssl	1.0.1a	All	All	All
Application	Openssl	Openssl	1.0.1b	All	All	All
Application	Openssl	Openssl	1.0.1c	All	All	All
Application	Openssl	Openssl	1.0.1d	All	All	All
Application	Openssl	Openssl	1.0.1e	All	All	All
Application	Openssl	Openssl	1.0.1f	All	All	All
Application	Openssl	Openssl	1.0.1g	All	All	All
Application	Openssl	Openssl	All	All	All	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
[security-announce] SUSE-SU-2015:1185-1: important: Security update for	af854a3a-2127-422b-91ae-364da2661108	lists.opensuse.org
Debian -- Security Information -- DSA-3287-1 openssl	af854a3a-2127-422b-91ae-364da2661108	www.debian.org
OpenSSL: Multiple vulnerabilities (GLSA 201506-02) — Gentoo security	af854a3a-2127-422b-91ae-364da2661108	security.gentoo.org
#3286: DTLS client crash while clearing (freeing) the dtls1_buffer_record queue (buffered_app_data)	af854a3a-2127-422b-91ae-364da2661108	rt.openssl.org	Exploit
Document Display \| HPE Support Center	af854a3a-2127-422b-91ae-364da2661108	h20566.www2.hpe.com	Third Party Advisory
Red Hat Customer Portal	af854a3a-2127-422b-91ae-364da2661108	rhn.redhat.com
FortiGuard	af854a3a-2127-422b-91ae-364da2661108	www.fortiguard.com
www.openssl.org/news/secadv_20150611.txt	af854a3a-2127-422b-91ae-364da2661108	www.openssl.org	Vendor Advisory
Broadcom Support Portal	af854a3a-2127-422b-91ae-364da2661108	bto.bluecoat.com
Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products	af854a3a-2127-422b-91ae-364da2661108	tools.cisco.com
USN-2639-1: OpenSSL vulnerabilities \| Ubuntu	af854a3a-2127-422b-91ae-364da2661108	www.ubuntu.com
FortiGuard	af854a3a-2127-422b-91ae-364da2661108	fortiguard.com
[security-announce] openSUSE-SU-2015:1277-1: important: Security update	af854a3a-2127-422b-91ae-364da2661108	lists.opensuse.org
ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.asc	af854a3a-2127-422b-91ae-364da2661108	ftp.netbsd.org
OpenSSL DTLS CVE-2014-8176 Remote Memory Corruption Vulnerability	af854a3a-2127-422b-91ae-364da2661108	www.securityfocus.com
Red Hat Customer Portal	af854a3a-2127-422b-91ae-364da2661108	rhn.redhat.com
McAfee KnowledgeBase - Intel Security - Security Bulletin: Seven OpenSSL CVEs Announced on June 11, 2015	af854a3a-2127-422b-91ae-364da2661108	kc.mcafee.com
openssl.org/news/secadv/20150611.txt	af854a3a-2127-422b-91ae-364da2661108	openssl.org
cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	af854a3a-2127-422b-91ae-364da2661108	cert-portal.siemens.com
OpenSSL Bugs Let Remote Users Deny Service and Potentially Execute Arbitrary Code - SecurityTracker	af854a3a-2127-422b-91ae-364da2661108	www.securitytracker.com
Free up s->d1->buffered_app_data.q properly. · openssl/openssl@470990f · GitHub	af854a3a-2127-422b-91ae-364da2661108	github.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

390226 Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2021-0011)
390284 Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2023-0013)
591280 Siemens SCALANCE X-200RNA Switch Devices Denial of Service (DoS) Multiple Vulnerabilities (ICSA-22-349-21, SSA-412672)
591311 Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)
671073 EulerOS Security Update for Open Secure Sockets Layer098e (OpenSSL098e) (EulerOS-SA-2019-2643)
671109 EulerOS Security Update for Open Secure Sockets Layer098e (OpenSSL098e) (EulerOS-SA-2019-2509)