CVE-2007-4995

Impact:
Important
Public Date:
2007-10-12
Bugzilla:
321191: CVE-2007-4995 openssl dtls out of order vulnerabilitiy

The MITRE CVE dictionary describes this issue as:

Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors.

Find out more about CVE-2007-4995 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the versions of OpenSSL as shipped with Red Hat Enterprise Linux 2.1, 3, or 4. An update to correct this issue for Enterprise Linux 5 is available.
http://rhn.redhat.com/cve/CVE-2007-4995.html

Please note that the CVE description is incorrect, this issue did not affect upstream versions of OpenSSL prior to 0.9.8.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (openssl) RHSA-2007:0964 2007-10-12

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.