Back to bug 1384743
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Huzaifa S. Sidhpurwala | 2016-10-14 03:49:42 UTC | CC | security-response-team | |
| Huzaifa S. Sidhpurwala | 2016-10-14 04:37:27 UTC | Blocks | 1384749 | |
| Clifford Perry | 2016-10-14 09:49:19 UTC | CC | cperry | |
| Huzaifa S. Sidhpurwala | 2016-10-17 05:24:50 UTC | Whiteboard | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhel-5/gnutls=affected,rhel-6/gnutls=affected,rhel-7/gnutls=affected,rhel-5/nss=new,rhel-6/nss=new,rhel-7/nss=new | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhel-5/gnutls=affected,rhel-6/gnutls=affected,rhel-7/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffectd,rhel-7/nss=notaffected |
| Tomas Hoger | 2016-10-17 06:34:11 UTC | Whiteboard | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhel-5/gnutls=affected,rhel-6/gnutls=affected,rhel-7/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffectd,rhel-7/nss=notaffected | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhel-5/gnutls=affected,rhel-6/gnutls=affected,rhel-7/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected |
| Huzaifa S. Sidhpurwala | 2016-10-20 06:40:50 UTC | Summary | EMBARGOED OpenSSL: Malformed plain-text ALERT packets could cause remote DoS | EMBARGOED SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS |
| Huzaifa S. Sidhpurwala | 2016-10-20 06:48:40 UTC | Summary | EMBARGOED SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS | CVE-2016-8610 EMBARGOED SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS |
| Alias | CVE-2016-8610 | |||
| Huzaifa S. Sidhpurwala | 2016-10-25 03:12:40 UTC | Whiteboard | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,rhel-5/gnutls=affected,rhel-6/gnutls=affected,rhel-7/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-6/openssl=wontfix,rhel-7/openssl=wontfix,fedora-all/openssl=affected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected |
| Huzaifa S. Sidhpurwala | 2016-10-25 03:13:56 UTC | Group | security, qe_staff | |
| Summary | CVE-2016-8610 EMBARGOED SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS | CVE-2016-8610 SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS | ||
| Whiteboard | impact=moderate,public=no,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-6/openssl=wontfix,rhel-7/openssl=wontfix,fedora-all/openssl=affected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-6/openssl=wontfix,rhel-7/openssl=wontfix,fedora-all/openssl=affected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected | ||
| Huzaifa S. Sidhpurwala | 2016-10-25 05:23:41 UTC | Doc Text | A flaw was found in the way some SSL/TLS libraries (OpenSSL and GnuTLS),processed ALERT packets during an SSL handshake. An attacker could use this flaw to DoS servers compiled against these libraries, which do not allocate an extra thread to process ClientHello packets. | |
| Yasuhiro Ozone | 2016-10-25 07:06:10 UTC | CC | yozone | |
| Huzaifa S. Sidhpurwala | 2016-10-25 09:00:24 UTC | Doc Text | A flaw was found in the way some SSL/TLS libraries (OpenSSL and GnuTLS),processed ALERT packets during an SSL handshake. An attacker could use this flaw to DoS servers compiled against these libraries, which do not allocate an extra thread to process ClientHello packets. | A denial of service flaw was found in the way the SSL/TLS protocol, defined processing of ALERT packets during an SSL handshake. An attacker could use this flaw to DoS servers compiled against cryptographic libraries, which do not allocate an extra thread to process ClientHello packets. |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:30:57 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-6/openssl=wontfix,rhel-7/openssl=wontfix,fedora-all/openssl=affected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl=wontfix,rhel-7/openssl098e=affected,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=new,rhel-5/nss=affected,rhel-6/nss=affected,rhel-7/nss=affected,fedora-all/nss=affected,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=notaffected,fedora-all/gnutls=affected |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:32:00 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl=wontfix,rhel-7/openssl098e=affected,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=new,rhel-5/nss=affected,rhel-6/nss=affected,rhel-7/nss=affected,fedora-all/nss=affected,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=notaffected,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:34:19 UTC | Depends On | 1388725 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:34:29 UTC | Depends On | 1388726 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:34:45 UTC | Depends On | 1388727 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:34:55 UTC | Depends On | 1388728 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:38:50 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=affected,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:39:14 UTC | Depends On | 1388729 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:39:20 UTC | Depends On | 1388730 | |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:40:15 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=affected,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
| Huzaifa S. Sidhpurwala | 2016-10-26 03:44:47 UTC | Blocks | 1386080 | |
| Norman Sardella | 2016-10-26 12:35:20 UTC | CC | sardella | |
| Salvatore Bonaccorso | 2016-10-29 19:48:48 UTC | CC | carnil | |
| Hubert Kario | 2016-11-04 17:35:09 UTC | CC | hkario | |
| Huzaifa S. Sidhpurwala | 2016-11-07 03:39:31 UTC | Summary | CVE-2016-8610 SSL/TLS libraries: Malformed plain-text ALERT packets could cause remote DoS | CVE-2016-8610 SSL/TLS: Malformed plain-text ALERT packets could cause remote DoS |
| Timothy Walsh | 2016-11-08 01:46:32 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=new,jbews-2/openssl=new,jbews-3/openssl=new,jbcs-1/openssl=new,eap-6/openssl=new,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
| Timothy Walsh | 2016-11-08 01:47:40 UTC | Depends On | 1392663 | |
| Timothy Walsh | 2016-11-08 01:47:52 UTC | Depends On | 1392664 | |
| Timothy Walsh | 2016-11-08 04:14:25 UTC | Depends On | 1392708 | |
| Muneaki Sugaya | 2016-11-11 02:52:05 UTC | CC | msugaya | |
| Tomas Hoger | 2017-02-03 09:44:47 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=wontfix,rhel-6/openssl098e=wontfix,rhel-7/openssl=wontfix,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
| Tomas Hoger | 2017-02-03 10:00:46 UTC | CC | bbaranow, bmaxwell, cdewolf, csutherl, dandread, darran.lofthouse, dosoudil, dueno, emaldona, erik-fedora, gzaronik, jawilson, jclere, kdudka, kengert, ktietz, lgao, marcandre.lureau, mbabacek, mturk, myarboro, pgier, psakar, pslavice, redhat-bugzilla, rjones, rnetuka, rsvoboda, twalsh, vtunka, weli | |
| Depends On | 1418965, 1418964, 1418966 | |||
| Tomas Hoger | 2017-02-14 10:25:06 UTC | Doc Text | A denial of service flaw was found in the way the SSL/TLS protocol, defined processing of ALERT packets during an SSL handshake. An attacker could use this flaw to DoS servers compiled against cryptographic libraries, which do not allocate an extra thread to process ClientHello packets. | A denial of service flaw was found in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections form other clients. |
| Timothy Walsh | 2017-02-22 10:12:08 UTC | Summary | CVE-2016-8610 SSL/TLS: Malformed plain-text ALERT packets could cause remote DoS | CVE-2016-8610 SSL/TLS: Malformed plain-text ALERT packets could cause remote DoS |
| Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=affected,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=defer,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected | ||
| Tomas Hoger | 2017-02-22 10:35:11 UTC | Summary | CVE-2016-8610 SSL/TLS: Malformed plain-text ALERT packets could cause remote DoS | CVE-2016-8610 SSL/TLS: Malformed plain-text ALERT packets could cause remote DoS |
| Timothy Walsh | 2017-06-02 11:02:17 UTC | Blocks | 1457678 | |
| Timothy Walsh | 2017-06-15 10:21:20 UTC | Blocks | 1446026 | |
| Timothy Walsh | 2017-06-15 10:53:11 UTC | Blocks | 1461790 | |
| Richa | 2017-08-08 15:51:39 UTC | Blocks | 1479475 | |
| Eric Christensen | 2017-08-18 12:18:14 UTC | Doc Text | A denial of service flaw was found in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections form other clients. | A denial of service flaw was found in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients. |
| Slawomir Czarko | 2017-12-13 16:55:40 UTC | CC | slawomir | |
| PnT Account Manager | 2018-01-30 23:26:59 UTC | CC | emaldona | |
| PnT Account Manager | 2018-10-31 22:46:08 UTC | CC | kengert | |
| Product Security DevOps Team | 2019-06-08 03:00:03 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:00:03 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:57:57 UTC | Whiteboard | impact=moderate,public=20161024,reported=20161014,source=researcher,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H,rhel-5/openssl=wontfix,rhel-5/openssl097a=wontfix,rhel-6/openssl=affected,rhel-6/openssl098e=wontfix,rhel-7/openssl=affected,rhel-7/openssl098e=wontfix,jbews-1/openssl=wontfix,jbews-2/openssl=affected,jbews-3/openssl=defer,jbcs-1/openssl=affected,eap-6/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,epel-5/openssl101e=affected,rhel-5/nss=notaffected,rhel-6/nss=notaffected,rhel-7/nss=notaffected,fedora-all/nss=notaffected,rhel-5/gnutls=wontfix,rhel-6/gnutls=wontfix,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected |
Back to bug 1384743