CVE-2004-0079

Impact:
Important
Public Date:
2004-03-17
Bugzilla:
1617140: CVE-2004-0079 security flaw

The MITRE CVE dictionary describes this issue as:

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

Find out more about CVE-2004-0079 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (openssl096b) RHSA-2005:830 2005-11-02
Red Hat Enterprise Linux 2.1 RHSA-2005:829 2005-11-02
Red Hat Enterprise Linux 3 RHSA-2004:120 2004-03-17
Red Hat Stronghold 4 RHSA-2004:139 2004-03-17
Red Hat Enterprise Linux 3 (openssl096b) RHSA-2005:830 2005-11-02
Red Hat Linux 9 RHSA-2004:121 2004-03-17
Last Modified

CVE description copyright © 2017, The MITRE Corporation