CVE-2003-0543

Impact:
Moderate
Public Date:
2003-09-30
Bugzilla:
104893: CAN-2003-0543/0544 OpenSSL ASN.1 protocol crashes

The MITRE CVE dictionary describes this issue as:

Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values.

Find out more about CVE-2003-0543 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

For Red Hat Enterprise Linux 2.1 OpenSSL packages (openssl, openssl096, openssl095a) issue was addressed via RHSA-2003:293.

The OpenSSL packages in Red Hat Enterprise Linux 3 and 4 (openssl, openssl096b) contain a backported patch since their initial release.

The OpenSSL packages in Red Hat Enterprise Linux 5 are based on fixed upstream release (openssl), or contain backported patch since their initial release (openssl097a).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Linux 7.2 RHSA-2003:291 2003-09-30
Red Hat Stronghold 4 RHSA-2003:290 2003-09-30
Red Hat Linux 7.1 RHSA-2003:291 2003-09-30
Red Hat Linux 8.0 RHSA-2003:291 2003-09-30
Red Hat Enterprise Linux 2.1 RHSA-2003:293 2003-09-30
Red Hat Linux 7.3 RHSA-2003:291 2003-09-30
Red Hat Linux 9 RHSA-2003:292 2003-09-30

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.