{"api_version":"1","generated_at":"2026-04-23T02:57:01+00:00","cve":"CVE-2014-0198","urls":{"html":"https://cve.report/CVE-2014-0198","api":"https://cve.report/api/cve/CVE-2014-0198.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2014-0198","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2014-0198"},"summary":{"title":"CVE-2014-0198","description":"The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.","state":"PUBLIC","assigner":"secalert@redhat.com","published_at":"2014-05-06 10:44:00","updated_at":"2022-08-29 20:50:00"},"problem_types":["CWE-476"],"metrics":[],"references":[{"url":"https://kb.bluecoat.com/index?page=content&id=SA80","name":"https://kb.bluecoat.com/index?page=content&id=SA80","refsource":"CONFIRM","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"404"},{"url":"http://secunia.com/advisories/59529","name":"59529","refsource":"SECUNIA","tags":[],"title":"About Secunia Research | Flexera","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://puppetlabs.com/security/cve/cve-2014-0198","name":"http://puppetlabs.com/security/cve/cve-2014-0198","refsource":"CONFIRM","tags":[],"title":"CVE-2014-0198 | Puppet Labs","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1093837","name":"https://bugzilla.redhat.com/show_bug.cgi?id=1093837","refsource":"CONFIRM","tags":[],"title":"Bug 1093837 – CVE-2014-0198 openssl: SSL_MODE_RELEASE_BUFFERS NULL pointer dereference in do_ssl3_write()","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59301","name":"59301","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59301 - HP Version Control Repository Manager (VCRM) OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58977","name":"58977","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58977 - IBM BladeCenter Advanced Management Module Firmware OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59162","name":"59162","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59162 - McAfee Multiple Products OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58945","name":"58945","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58945 - IBM FastSetup OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195","name":"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195","refsource":"CONFIRM","tags":[],"title":"Juniper Networks - Junos Pulse/SA (SSLVPN): Details on fixes for SSL/TLS MITM vulnerability (CVE-2014-0224)/JSA10629   - Knowledge Base","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://advisories.mageia.org/MGASA-2014-0204.html","name":"http://advisories.mageia.org/MGASA-2014-0204.html","refsource":"CONFIRM","tags":[],"title":"Mageia Advisory: MGASA-2014-0204 - Updated openssl packages fix CVE-2014-0198","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/60049","name":"60049","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA60049 - HP OneView OpenSSL Two Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/67193","name":"67193","refsource":"BID","tags":[],"title":"OpenSSL 'so_ssl3_write()' Function NULL Pointer Dereference Denial of Service Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc","name":"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc","refsource":"CONFIRM","tags":[],"title":"","mime":"text/plain","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00037.html","name":"openSUSE-SU-2014:0635","refsource":"SUSE","tags":[],"title":"openSUSE-SU-2014:0635-1: moderate: update for openssl","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59342","name":"59342","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59342 - HP Smart Update Manager (HP SUM) OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=141658880509699&w=2","name":"HPSBHF03052","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBHF03052 rev.2 - HP Network Products running OpenSSL, Multiple Remote Vulnera' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59202","name":"59202","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59202 - Cisco MATE Multiple Products OpenSSL Two Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59514","name":"59514","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59514 - HP System Management Homepage OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.fortiguard.com/advisory/FG-IR-14-018/","name":"http://www.fortiguard.com/advisory/FG-IR-14-018/","refsource":"CONFIRM","tags":[],"title":"FortiGuard.com | Multiple Vulnerabilities in OpenSSL","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677695","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677695","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Initiate Master Data Service, IBM InfoSphere Master Data Management are affected by the following OpenSSL vulnerabilities: (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 and CVE-2014-0076) - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://support.citrix.com/article/CTX140876","name":"http://support.citrix.com/article/CTX140876","refsource":"CONFIRM","tags":[],"title":"Citrix Security Advisory for OpenSSL Vulnerabilities (June 2014)","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59655","name":"59655","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59655 - IBM SmartCloud Provisioning for IBM Provided Software Virtual Appliance OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676655","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676655","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Security Access Manager for Mobile and IBM Security Access Manager for Web appliances are affected by the following OpenSSL vulnerabilities:  CVE-2014-0224, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 and possibly CVE-2014-0076 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html","name":"FEDORA-2014-9301","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 19 Update: openssl-1.0.1e-39.fc19","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59287","name":"59287","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59287 - IBM Proventia Network Enterprise Scanner OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21683332","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21683332","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM InfoSphere Guardium Database Activity Monitor is affected by CVE-2014-0221, CVE-2014-0224, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vmware.com/security/advisories/VMSA-2014-0012.html","name":"http://www.vmware.com/security/advisories/VMSA-2014-0012.html","refsource":"CONFIRM","tags":[],"title":"VMSA-2014-0012 | United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59437","name":"59437","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59437 - IBM Rational Application Developer for WebSphere Software OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677828","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677828","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM SmartCloud Provisioning. - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59264","name":"59264","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59264 - Cisco WebEx Meetings Server / Unified Communications Manager OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59666","name":"59666","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59666 - IBM SDK for Node.js OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58713","name":"58713","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58713 - IBM Multiple Products OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676889","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676889","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Security Proventia Network Enterprise Scanner is affected by the following OpenSSL vulnerabilities:  CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 - United States","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://secunia.com/advisories/59450","name":"59450","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59450 - IBM API Management OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21673137","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21673137","refsource":"CONFIRM","tags":[],"title":"IBM notice: The page you requested cannot be displayed","mime":"text/html","httpstatus":"404","archivestatus":"410"},{"url":"http://secunia.com/advisories/59374","name":"59374","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59374 - Cisco IOS XE OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163","name":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM i is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198 and CVE-2014-3470 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21676356","name":"http://www.ibm.com/support/docview.wss?uid=swg21676356","refsource":"CONFIRM","tags":[],"title":"Security Bulletin: Rational Application Developer is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://secunia.com/advisories/59282","name":"59282","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59282 - Cisco Multiple Products OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59449","name":"59449","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59449 - IBM Security Network Intrusion Prevention System OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10075","name":"https://kc.mcafee.com/corporate/index?page=content&id=SB10075","refsource":"CONFIRM","tags":[],"title":"McAfee KnowledgeBase - McAfee Security Bulletin – Seven OpenSSL vulnerabilities patched in McAfee products","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59438","name":"59438","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59438 - IBM Security Access Manager for Web / Security Access Manager for Mobile Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140389274407904&w=2","name":"HPSBMU03057","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03057 rev.1 - HP Version Control Agent (HP VCA) running OpenSSL on Linux a' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/60066","name":"60066","refsource":"SECUNIA","tags":[],"title":"About Secunia Research | Flexera","mime":"text/plain","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140389355508263&w=2","name":"HPSBMU03056","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03056 rev.1 - HP Version Control Repository Manager (HP VCRM) running Open' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140752315422991&w=2","name":"HPSBMU03062","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03062 rev.1 - HP Insight Control server deployment on Linux and Windows ru' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2014:080","name":"MDVSA-2014:080","refsource":"MANDRIVA","tags":[],"title":"mandriva.com","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html","name":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html","refsource":"CONFIRM","tags":[],"title":"Oracle Critical Patch Update - January 2015","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676879","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676879","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Security Network Intrusion Prevention System is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, and CVE-2014-3470. - United States","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://secunia.com/advisories/59163","name":"59163","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59163 - Juniper IVE OS OpenSSL Two Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/60571","name":"60571","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA60571 - EMC Documentum Content Server Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59669","name":"59669","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59669 - IBM InfoSphere Guardium OpenSSL Security Issue and Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://seclists.org/fulldisclosure/2014/Dec/23","name":"20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities","refsource":"FULLDISC","tags":[],"title":"Full Disclosure: NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59413","name":"59413","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59413 - IBM Initiate Master Data Service / IBM InfoSphere Master Data Management OpenSSL Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140621259019789&w=2","name":"HPSBMU03074","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03074 rev.1 - HP Insight Control server migration on Linux and Windows run' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59300","name":"59300","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59300 - IBM Tivoli Management Framework OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59398","name":"59398","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59398 - F5 Access Policy Manager OpenSSL &quot;do_ssl3_write()&quot; NULL Pointer Dereference Vulnerability - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html","name":"SUSE-SU-2015:0743","refsource":"SUSE","tags":[],"title":"[security-announce] SUSE-SU-2015:0743-1: important: Security update for","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946","name":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946","refsource":"CONFIRM","tags":[],"title":"Document Display | HPE Support Center","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://marc.info/?l=bugtraq&m=140431828824371&w=2","name":"HPSBMU03055","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03055 rev.1 - HP Smart Update Manager (HP SUM) running OpenSSL, Remote Den' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756","name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756","refsource":"CONFIRM","tags":[],"title":"IBM Support","mime":"text/html","httpstatus":"200","archivestatus":"403"},{"url":"http://secunia.com/advisories/59990","name":"59990","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59990 - Cisco Quantum Policy Suite OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.novell.com/support/kb/doc.php?id=7015271","name":"https://www.novell.com/support/kb/doc.php?id=7015271","refsource":"CONFIRM","tags":[],"title":"","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59490","name":"59490","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59490 - HP Version Control Agent OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58337","name":"58337","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58337 - IBM Upward Integration Modules (UIM) OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21678167","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21678167","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM® SDK for Node.js™ is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=3321","name":"https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=3321","refsource":"CONFIRM","tags":[],"title":"#3321: NULL pointer dereference with SSL_MODE_RELEASE_BUFFERS flag","mime":"text/html","httpstatus":"500","archivestatus":"200"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:062","name":"MDVSA-2015:062","refsource":"MANDRIVA","tags":[],"title":"Support / Security / Advisories /  / MDVSA-2015:062 | Mandriva","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59784","name":"59784","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59784 - Novell File Reporter Multiple OpenSSL Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59721","name":"59721","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59721 - IBM SmartCloud Provisioning OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm","name":"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm","refsource":"CONFIRM","tags":[],"title":"Security Advisory-Multiple OpenSSL vulnerabilities on Huawei products -  Huawei PSIRT","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58714","name":"58714","refsource":"SECUNIA","tags":[],"title":"About Secunia Research | Flexera","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://marc.info/?l=bugtraq&m=140544599631400&w=2","name":"HPSBGN03068","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBGN03068 rev.1 - HP OneView running OpenSSL, Remote Denial of Service (DoS), ' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755","name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755","refsource":"CONFIRM","tags":[],"title":"IBM Support","mime":"text/html","httpstatus":"200","archivestatus":"403"},{"url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl","name":"20140605 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products","refsource":"CISCO","tags":[],"title":"Multiple Vulnerabilities in OpenSSL Affecting Cisco Products","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59525","name":"59525","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59525 - IBM Sterling Connect:Express for UNIX OpenSSL Security Issue and Two Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676035","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676035","refsource":"CONFIRM","tags":[],"title":"IBM notice: The page you requested cannot be displayed","mime":"text/html","httpstatus":"404","archivestatus":"410"},{"url":"http://www.openssl.org/news/secadv_20140605.txt","name":"http://www.openssl.org/news/secadv_20140605.txt","refsource":"CONFIRM","tags":[],"title":"","mime":"text/plain","httpstatus":"200","archivestatus":"200"},{"url":"http://security.gentoo.org/glsa/glsa-201407-05.xml","name":"GLSA-201407-05","refsource":"GENTOO","tags":[],"title":"Gentoo Linux Documentation\n--\n  OpenSSL: Multiple vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html","name":"http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html","refsource":"CONFIRM","tags":[],"title":"Oracle Critical Patch Update - October 2014","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html","name":"http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html","refsource":"CONFIRM","tags":[],"title":"Oracle Critical Patch Update - July 2014","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00036.html","name":"openSUSE-SU-2014:0634","refsource":"SUSE","tags":[],"title":"openSUSE-SU-2014:0634-1: moderate: update for openssl","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629","name":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629","refsource":"CONFIRM","tags":[],"title":"Juniper Networks - 2014-06 Out of Cycle Security Bulletin: Vulnerabilities in OpenSSL related to ChangeCipherSpec, DTLS, SSL_MODE_RELEASE_BUFFERS and ECDH ciphersuites   - Knowledge Base","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140904544427729&w=2","name":"HPSBMU03076","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03076 rev.2 - HP Systems Insight Manager (SIM) on Linux and Windows runnin' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677836","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677836","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Sterling Connect:Express for UNIX is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://marc.info/?l=bugtraq&m=140448122410568&w=2","name":"HPSBMU03051","refsource":"HP","tags":[],"title":"'[security bulletin] HPSBMU03051 rev.2 - HP System Management Homepage running OpenSSL on Linux and W' - MARC","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58667","name":"58667","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58667 - Cisco Multiple Products OpenSSL SSL/TLS Handshake Security Issue and Two Denial of Service Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59310","name":"59310","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59310 - Novell Messenger OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf","name":"https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf","refsource":"CONFIRM","tags":[],"title":"","mime":"application/pdf","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676062","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676062","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: SmartCloud Orchestrator is affected by the following OpenSSL vulnerabilities (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470, CVE-2014-0076) - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59190","name":"59190","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59190 - Blue Coat ProxySG OpenSSL SSL/TLS Handshake Security Issue and Denial of Service Vulnerability - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677527","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677527","refsource":"CONFIRM","tags":[],"title":"IBM notice: The page you requested cannot be displayed","mime":"text/html","httpstatus":"404","archivestatus":"410"},{"url":"http://www.ibm.com/support/docview.wss?uid=swg24037783","name":"http://www.ibm.com/support/docview.wss?uid=swg24037783","refsource":"CONFIRM","tags":[],"title":"IBM SDK for Node.js 1.1.0.4 for use by the Cordova tools","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://secunia.com/advisories/59126","name":"59126","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59126 - Huawei Multiple Products Multiple OpenSSL Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.debian.org/security/2014/dsa-2931","name":"DSA-2931","refsource":"DEBIAN","tags":[],"title":"Debian -- Security Information -- DSA-2931-1 openssl","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676419","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676419","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: Tivoli Management Framework is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 and possibly CVE-2014-0076. - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59284","name":"59284","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59284 - Cisco Prime Network OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754","name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754","refsource":"CONFIRM","tags":[],"title":"IBM Support","mime":"text/html","httpstatus":"200","archivestatus":"403"},{"url":"http://www.securityfocus.com/archive/1/534161/100/0/threaded","name":"20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities","refsource":"BUGTRAQ","tags":[],"title":"SecurityFocus","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.blackberry.com/btsc/KB36051","name":"http://www.blackberry.com/btsc/KB36051","refsource":"CONFIRM","tags":[],"title":"","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://secunia.com/advisories/61254","name":"61254","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA61254 - IBM InfoSphere Guardium Database Activity Monitor Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59491","name":"59491","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59491 - BlackBerry OS OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676529","name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676529","refsource":"CONFIRM","tags":[],"title":"IBM Security Bulletin: IBM Security Network Protection is affected by the following OpenSSL vulnerabilities:  CVE-2014-0224, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 - United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html","name":"FEDORA-2014-9308","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 20 Update: openssl-1.0.1e-39.fc20","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/58939","name":"58939","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA58939 - IBM SmartCloud Orchestrator OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","name":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","refsource":"CONFIRM","tags":[],"title":"Oracle Critical Patch Update - October 2017","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757","name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757","refsource":"CONFIRM","tags":[],"title":"IBM Support","mime":"text/html","httpstatus":"200","archivestatus":"403"},{"url":"http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15329.html","name":"http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15329.html","refsource":"CONFIRM","tags":[],"title":"","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vmware.com/security/advisories/VMSA-2014-0006.html","name":"http://www.vmware.com/security/advisories/VMSA-2014-0006.html","refsource":"CONFIRM","tags":[],"title":"VMSA-2014-0006.11 | United States","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59440","name":"59440","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59440 - IBM Security Network Protection Security Issue and Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.openbsd.org/errata55.html#005_openssl","name":"[5.5] 005: RELIABILITY FIX: May 1, 2014","refsource":"OPENBSD","tags":[],"title":"OpenBSD 5.5 errata","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/59306","name":"59306","refsource":"SECUNIA","tags":[],"title":"Security Advisory SA59306 - IBM i OpenSSL Multiple Vulnerabilities - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2014-0198","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-0198","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"6.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"19","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"20","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"mariadb","cpe5":"mariadb","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta4","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta5","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0a","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0b","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0c","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0d","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0e","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0f","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0g","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0h","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0i","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0j","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0k","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0l","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1a","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1b","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1c","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1d","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1e","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1f","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1g","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta4","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0","cpe7":"beta5","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0a","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0b","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0c","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0d","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0e","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0f","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0g","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0h","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0i","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0j","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0k","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.0l","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1","cpe7":"beta3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1a","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1b","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1c","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1d","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1e","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1f","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"1.0.1g","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"1.0.1g","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openssl","cpe5":"openssl","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"opensuse","cpe5":"opensuse","cpe6":"12.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"opensuse","cpe5":"opensuse","cpe6":"13.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"suse","cpe5":"linux_enterprise_desktop","cpe6":"12","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"suse","cpe5":"linux_enterprise_server","cpe6":"12","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"suse","cpe5":"linux_enterprise_software_development_kit","cpe6":"12","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2014","cve_id":"198","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"suse","cpe5":"linux_enterprise_workstation_extension","cpe6":"12","cpe7":"-","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2014-0198","qid":"390226","title":"Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2021-0011)"},{"cve":"CVE-2014-0198","qid":"390284","title":"Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2023-0013)"},{"cve":"CVE-2014-0198","qid":"590349","title":"Rockwell Automation Stratix 5900 Multiple Vulnerabilities (ICSA-17-094-04)"},{"cve":"CVE-2014-0198","qid":"591311","title":"Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)"}]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"secalert@redhat.com","ID":"CVE-2014-0198","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"59342","refsource":"SECUNIA","url":"http://secunia.com/advisories/59342"},{"name":"59669","refsource":"SECUNIA","url":"http://secunia.com/advisories/59669"},{"name":"59525","refsource":"SECUNIA","url":"http://secunia.com/advisories/59525"},{"name":"59282","refsource":"SECUNIA","url":"http://secunia.com/advisories/59282"},{"name":"59990","refsource":"SECUNIA","url":"http://secunia.com/advisories/59990"},{"name":"59264","refsource":"SECUNIA","url":"http://secunia.com/advisories/59264"},{"name":"http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15329.html","refsource":"CONFIRM","url":"http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15329.html"},{"name":"59126","refsource":"SECUNIA","url":"http://secunia.com/advisories/59126"},{"name":"67193","refsource":"BID","url":"http://www.securityfocus.com/bid/67193"},{"name":"59306","refsource":"SECUNIA","url":"http://secunia.com/advisories/59306"},{"name":"https://bugzilla.redhat.com/show_bug.cgi?id=1093837","refsource":"CONFIRM","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1093837"},{"name":"HPSBGN03068","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140544599631400&w=2"},{"name":"59190","refsource":"SECUNIA","url":"http://secunia.com/advisories/59190"},{"name":"59529","refsource":"SECUNIA","url":"http://secunia.com/advisories/59529"},{"name":"http://www.vmware.com/security/advisories/VMSA-2014-0012.html","refsource":"CONFIRM","url":"http://www.vmware.com/security/advisories/VMSA-2014-0012.html"},{"name":"61254","refsource":"SECUNIA","url":"http://secunia.com/advisories/61254"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676655","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676655"},{"name":"http://puppetlabs.com/security/cve/cve-2014-0198","refsource":"CONFIRM","url":"http://puppetlabs.com/security/cve/cve-2014-0198"},{"name":"59449","refsource":"SECUNIA","url":"http://secunia.com/advisories/59449"},{"name":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946","refsource":"CONFIRM","url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676879","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676879"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677828","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677828"},{"name":"HPSBMU03074","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140621259019789&w=2"},{"name":"59300","refsource":"SECUNIA","url":"http://secunia.com/advisories/59300"},{"name":"58667","refsource":"SECUNIA","url":"http://secunia.com/advisories/58667"},{"name":"GLSA-201407-05","refsource":"GENTOO","url":"http://security.gentoo.org/glsa/glsa-201407-05.xml"},{"name":"59284","refsource":"SECUNIA","url":"http://secunia.com/advisories/59284"},{"name":"http://www.ibm.com/support/docview.wss?uid=swg24037783","refsource":"CONFIRM","url":"http://www.ibm.com/support/docview.wss?uid=swg24037783"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677695","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677695"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676529","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676529"},{"name":"http://advisories.mageia.org/MGASA-2014-0204.html","refsource":"CONFIRM","url":"http://advisories.mageia.org/MGASA-2014-0204.html"},{"name":"20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/534161/100/0/threaded"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676889","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676889"},{"name":"FEDORA-2014-9308","refsource":"FEDORA","url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"},{"name":"58945","refsource":"SECUNIA","url":"http://secunia.com/advisories/58945"},{"name":"[5.5] 005: RELIABILITY FIX: May 1, 2014","refsource":"OPENBSD","url":"http://www.openbsd.org/errata55.html#005_openssl"},{"name":"59440","refsource":"SECUNIA","url":"http://secunia.com/advisories/59440"},{"name":"https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=3321","refsource":"CONFIRM","url":"https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=3321"},{"name":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html","refsource":"CONFIRM","url":"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"},{"name":"59655","refsource":"SECUNIA","url":"http://secunia.com/advisories/59655"},{"name":"59163","refsource":"SECUNIA","url":"http://secunia.com/advisories/59163"},{"name":"DSA-2931","refsource":"DEBIAN","url":"http://www.debian.org/security/2014/dsa-2931"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677836","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677836"},{"name":"59437","refsource":"SECUNIA","url":"http://secunia.com/advisories/59437"},{"name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754","refsource":"CONFIRM","url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754"},{"name":"59374","refsource":"SECUNIA","url":"http://secunia.com/advisories/59374"},{"name":"http://www.vmware.com/security/advisories/VMSA-2014-0006.html","refsource":"CONFIRM","url":"http://www.vmware.com/security/advisories/VMSA-2014-0006.html"},{"name":"59310","refsource":"SECUNIA","url":"http://secunia.com/advisories/59310"},{"name":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","refsource":"CONFIRM","url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"},{"name":"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc","refsource":"CONFIRM","url":"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc"},{"name":"http://www.fortiguard.com/advisory/FG-IR-14-018/","refsource":"CONFIRM","url":"http://www.fortiguard.com/advisory/FG-IR-14-018/"},{"name":"SUSE-SU-2015:0743","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"},{"name":"http://www.ibm.com/support/docview.wss?uid=swg21676356","refsource":"CONFIRM","url":"http://www.ibm.com/support/docview.wss?uid=swg21676356"},{"name":"HPSBMU03057","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140389274407904&w=2"},{"name":"http://support.citrix.com/article/CTX140876","refsource":"CONFIRM","url":"http://support.citrix.com/article/CTX140876"},{"name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757","refsource":"CONFIRM","url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757"},{"name":"58939","refsource":"SECUNIA","url":"http://secunia.com/advisories/58939"},{"name":"59514","refsource":"SECUNIA","url":"http://secunia.com/advisories/59514"},{"name":"20140605 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products","refsource":"CISCO","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl"},{"name":"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195","refsource":"CONFIRM","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195"},{"name":"https://kc.mcafee.com/corporate/index?page=content&id=SB10075","refsource":"CONFIRM","url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10075"},{"name":"http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html","refsource":"CONFIRM","url":"http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676419","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676419"},{"name":"59438","refsource":"SECUNIA","url":"http://secunia.com/advisories/59438"},{"name":"58714","refsource":"SECUNIA","url":"http://secunia.com/advisories/58714"},{"name":"HPSBHF03052","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=141658880509699&w=2"},{"name":"http://www.openssl.org/news/secadv_20140605.txt","refsource":"CONFIRM","url":"http://www.openssl.org/news/secadv_20140605.txt"},{"name":"20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities","refsource":"FULLDISC","url":"http://seclists.org/fulldisclosure/2014/Dec/23"},{"name":"60066","refsource":"SECUNIA","url":"http://secunia.com/advisories/60066"},{"name":"59301","refsource":"SECUNIA","url":"http://secunia.com/advisories/59301"},{"name":"openSUSE-SU-2014:0634","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00036.html"},{"name":"59784","refsource":"SECUNIA","url":"http://secunia.com/advisories/59784"},{"name":"https://kb.bluecoat.com/index?page=content&id=SA80","refsource":"CONFIRM","url":"https://kb.bluecoat.com/index?page=content&id=SA80"},{"name":"HPSBMU03076","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140904544427729&w=2"},{"name":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629","refsource":"CONFIRM","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21678167","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21678167"},{"name":"FEDORA-2014-9301","refsource":"FEDORA","url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"},{"name":"HPSBMU03062","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140752315422991&w=2"},{"name":"MDVSA-2014:080","refsource":"MANDRIVA","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2014:080"},{"name":"HPSBMU03056","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140389355508263&w=2"},{"name":"HPSBMU03051","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140448122410568&w=2"},{"name":"59666","refsource":"SECUNIA","url":"http://secunia.com/advisories/59666"},{"name":"HPSBMU03055","refsource":"HP","url":"http://marc.info/?l=bugtraq&m=140431828824371&w=2"},{"name":"59413","refsource":"SECUNIA","url":"http://secunia.com/advisories/59413"},{"name":"http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html","refsource":"CONFIRM","url":"http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html"},{"name":"59721","refsource":"SECUNIA","url":"http://secunia.com/advisories/59721"},{"name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756","refsource":"CONFIRM","url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676062","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676062"},{"name":"58713","refsource":"SECUNIA","url":"http://secunia.com/advisories/58713"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21673137","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21673137"},{"name":"MDVSA-2015:062","refsource":"MANDRIVA","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:062"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21676035","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21676035"},{"name":"59450","refsource":"SECUNIA","url":"http://secunia.com/advisories/59450"},{"name":"59287","refsource":"SECUNIA","url":"http://secunia.com/advisories/59287"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21683332","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21683332"},{"name":"59491","refsource":"SECUNIA","url":"http://secunia.com/advisories/59491"},{"name":"58977","refsource":"SECUNIA","url":"http://secunia.com/advisories/58977"},{"name":"openSUSE-SU-2014:0635","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00037.html"},{"name":"https://www.novell.com/support/kb/doc.php?id=7015271","refsource":"CONFIRM","url":"https://www.novell.com/support/kb/doc.php?id=7015271"},{"name":"60571","refsource":"SECUNIA","url":"http://secunia.com/advisories/60571"},{"name":"http://www.blackberry.com/btsc/KB36051","refsource":"CONFIRM","url":"http://www.blackberry.com/btsc/KB36051"},{"name":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755","refsource":"CONFIRM","url":"http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755"},{"name":"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm","refsource":"CONFIRM","url":"http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm"},{"name":"http://www-01.ibm.com/support/docview.wss?uid=swg21677527","refsource":"CONFIRM","url":"http://www-01.ibm.com/support/docview.wss?uid=swg21677527"},{"name":"59202","refsource":"SECUNIA","url":"http://secunia.com/advisories/59202"},{"name":"58337","refsource":"SECUNIA","url":"http://secunia.com/advisories/58337"},{"name":"59162","refsource":"SECUNIA","url":"http://secunia.com/advisories/59162"},{"name":"59398","refsource":"SECUNIA","url":"http://secunia.com/advisories/59398"},{"name":"59490","refsource":"SECUNIA","url":"http://secunia.com/advisories/59490"},{"name":"60049","refsource":"SECUNIA","url":"http://secunia.com/advisories/60049"},{"refsource":"CONFIRM","name":"https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf","url":"https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf"}]}},"nvd":{"publishedDate":"2014-05-06 10:44:00","lastModifiedDate":"2022-08-29 20:50:00","problem_types":["CWE-476"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL","baseScore":4.3},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.0","versionEndIncluding":"1.0.1g","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*","versionStartIncluding":"10.0.0","versionEndExcluding":"10.0.13","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2014","CveId":"198","Ordinal":"66831","Title":"CVE-2014-0198","CVE":"CVE-2014-0198","Year":"2014"},"notes":[{"CveYear":"2014","CveId":"198","Ordinal":"1","NoteData":"The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition.","Type":"Description","Title":null},{"CveYear":"2014","CveId":"198","Ordinal":"2","NoteData":"2014-05-06","Type":"Other","Title":"Published"},{"CveYear":"2014","CveId":"198","Ordinal":"3","NoteData":"2020-02-10","Type":"Other","Title":"Modified"}]}}}