CVE - CVE - 2014 - 0160

CVE-ID
cve - 2014 - 0160	了解更多国家漏洞数据库(NVD) •CVSS严重性评级•修复信息•••CPE SCAP映射脆弱的软件版本信息
描述
TLS(1)和(2)迪泰实现在OpenSSL 1.0.1 1.0.1g不妥善处理心跳扩展包,它允许远程攻击者获取敏感信息通过精心包进程内存,触发一个缓冲罩上,展示了通过阅读私钥,d1_both有关。c和t1_lib。c,即Heartbleed bug。
引用
注意:引用为方便读者提供帮助区分漏洞。并不是完整列表。
报价:66690 URL: http://www.securityfocus.com/bid/66690 BUGTRAQ: 20141205新:vmsa - 2014 - 0012 - VMware vSphere产品更新解决安全漏洞 URL: http://www.securityfocus.com/archive/1/534161/100/0/threaded 证书:ta14 - 098 a URL: http://www.us cert.gov/ncas/alerts/ta14 - 098 a CERT-VN: VU # 720951 URL: http://www.kb.cert.org/vuls/id/720951 思科:20140409 OpenSSL心跳扩展脆弱性在多个思科产品 URL: http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco - sa - 20140409 - heartbleed 确认:http://advisories.mageia.org/mgasa - 2014 - 0165. - html 确认:http://cogentdatahub.com/ReleaseNotes.html 确认:http://download.schneider - electric.com/files?p_doc_ref=sevd%202014 - 119 - 01 确认:http://git.openssl.org/gitweb/?p=openssl.git; =提交;h = 96 db9023b881d7cd9f379b0c154650d6c108e9a3 确认:http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=1 确认:http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=3 确认:http://support.citrix.com/article/CTX140605 确认:http://www ibm.com/support/docview.wss?uid=isg400001841——01. 确认:http://www ibm.com/support/docview.wss?uid=isg400001843——01. 确认:http://www ibm.com/support/docview.wss?uid=ssg1s1004661——01. 确认:http://www ibm.com/support/docview.wss?uid=swg21670161——01. 确认:http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf 确认:http://www.blackberry.com/btsc/KB35882 确认:http://www.f - secure.com/en/web/labs_global/fsc - 2014 - 1 确认:http://www.getchef.com/blog/2014/04/09/chef-server-11-0-12-release/ 确认:http://www.getchef.com/blog/2014/04/09/chef服务器- heartbleed cve - 2014 - 0160 - releases/ 确认:http://www.getchef.com/blog/2014/04/09/enterprise-chef-1-4-9-release/ 确认:http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/ 确认:http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf 确认:http://www.kerio.com/support/kerio-control/release-history 确认:http://www.openssl.org/news/万博下载包secadv_20140407.txt 确认:http://www.oracle.com/technetwork/topics/security/cpujul2014 - 1972956. - html 确认:http://www.oracle.com/technetwork/topics/security/opensslheartbleedcve - 2014 - 0160 - 2188454. - html 确认:http://www.splunk.com/view/SP-CAAAMB3 确认:http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160512_00 确认:http://www.vmware.com/security/advisories/vmsa - 2014 - 0012. - html 确认:http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 确认:https://bugzilla.redhat.com/show_bug.cgi?id=1084875 确认:https://cert - portal.siemens.com/productcert/pdf/ssa - 635659. - pdf 确认:https://code.google.com/p/mod-spdy/issues/detail?id=85 确认:https://filezilla-project.org/versions.php?type=server 确认:https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html 确认:https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html?sr=36517217 确认:https://www.mitel.com/en - ca/support/security advisories/mitel -产品-安全-咨询- 17 - 0008 DEBIAN: dsa - 2896 URL: http://www.debian.org/security/2014/dsa - 2896 EXPLOIT-DB: 32745 URL: http://www.exploit-db.com/exploits/32745 EXPLOIT-DB: 32764 URL: http://www.exploit-db.com/exploits/32764 FEDORA: FEDORA - 2014 - 4879 URL: http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131221.html FEDORA: FEDORA - 2014 - 4910 URL: http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131291.html FEDORA: FEDORA - 2014 - 9308 URL: http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html FULLDISC: 20140408 Re: heartbleed OpenSSL bug cve - 2014 - 0160 URL: http://seclists.org/fulldisclosure/2014/Apr/91 FULLDISC: 20140408 heartbleed OpenSSL bug cve - 2014 - 0160 URL: http://seclists.org/fulldisclosure/2014/Apr/90 FULLDISC: 20140409 Re: heartbleed OpenSSL bug cve - 2014 - 0160 URL: http://seclists.org/fulldisclosure/2014/Apr/109 FULLDISC: 20140411核磁共振红宝石可能包含静态链接的,脆弱的OpenSSL URL: http://seclists.org/fulldisclosure/2014/Apr/173 FULLDISC: 20140412 Re: heartbleed OpenSSL bug cve - 2014 - 0160 URL: http://seclists.org/fulldisclosure/2014/Apr/190 FULLDISC: 20141205新:vmsa - 2014 - 0012 - VMware vSphere产品更新解决安全漏洞 URL: http://seclists.org/fulldisclosure/2014/Dec/23 惠普:HPSBGN03008 URL: http://marc.info/?l=bugtraq&m=139774054614965&w=2 惠普:HPSBGN03010 URL: http://marc.info/?l=bugtraq&m=139774703817488&w=2 惠普:HPSBGN03011 URL: http://marc.info/?l=bugtraq&m=139833395230364&w=2 惠普:HPSBHF03021 URL: http://marc.info/?l=bugtraq&m=139835815211508&w=2 惠普:HPSBHF03136 URL: http://marc.info/?l=bugtraq&m=141287864628122&w=2 惠普:HPSBHF03293 URL: http://marc.info/?l=bugtraq&m=142660345230545&w=2 惠普:HPSBMU02994 URL: http://marc.info/?l=bugtraq&m=139757726426985&w=2 惠普:HPSBMU02995 URL: http://marc.info/?l=bugtraq&m=139722163017074&w=2 惠普:HPSBMU02997 URL: http://marc.info/?l=bugtraq&m=139757919027752&w=2 惠普:HPSBMU02998 URL: http://marc.info/?l=bugtraq&m=139757819327350&w=2 惠普:HPSBMU02999 URL: http://marc.info/?l=bugtraq&m=139765756720506&w=2 惠普:HPSBMU03009 URL: http://marc.info/?l=bugtraq&m=139905458328378&w=2 惠普:HPSBMU03012 URL: http://marc.info/?l=bugtraq&m=139808058921905&w=2 惠普:HPSBMU03013 URL: http://marc.info/?l=bugtraq&m=139824993005633&w=2 惠普:HPSBMU03017 URL: http://marc.info/?l=bugtraq&m=139817727317190&w=2 惠普:HPSBMU03018 URL: http://marc.info/?l=bugtraq&m=139817782017443&w=2 惠普:HPSBMU03019 URL: http://marc.info/?l=bugtraq&m=139817685517037&w=2 惠普:HPSBMU03020 URL: http://marc.info/?l=bugtraq&m=139836085512508&w=2 惠普:HPSBMU03022 URL: http://marc.info/?l=bugtraq&m=139869891830365&w=2 惠普:HPSBMU03023 URL: http://marc.info/?l=bugtraq&m=139843768401936&w=2 惠普:HPSBMU03024 URL: http://marc.info/?l=bugtraq&m=139889113431619&w=2 惠普:HPSBMU03025 URL: http://marc.info/?l=bugtraq&m=139869720529462&w=2 惠普:HPSBMU03028 URL: http://marc.info/?l=bugtraq&m=139905243827825&w=2 惠普:HPSBMU03029 URL: http://marc.info/?l=bugtraq&m=139905202427693&w=2 惠普:HPSBMU03030 URL: http://marc.info/?l=bugtraq&m=139905351928096&w=2 惠普:HPSBMU03032 URL: http://marc.info/?l=bugtraq&m=139905405728262&w=2 惠普:HPSBMU03033 URL: http://marc.info/?l=bugtraq&m=139905295427946&w=2 惠普:HPSBMU03037 URL: http://marc.info/?l=bugtraq&m=140724451518351&w=2 惠普:HPSBMU03040 URL: http://marc.info/?l=bugtraq&m=140015787404650&w=2 惠普:HPSBMU03044 URL: http://marc.info/?l=bugtraq&m=140075368411126&w=2 惠普:HPSBMU03062 URL: http://marc.info/?l=bugtraq&m=140752315422991&w=2 惠普:HPSBPI03014 URL: http://marc.info/?l=bugtraq&m=139835844111589&w=2 惠普:HPSBPI03031 URL: http://marc.info/?l=bugtraq&m=139889295732144&w=2 惠普:HPSBST03000 URL: https://h20566.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?spf_p.tpst=kbdocdisplay&spf_p.prp_kbdocdisplay=wsrp - navigationalstate%3ddocid%253demr_na - 257 cdoclocale%253den_us%257ccalledby%253dsearch_result&javax.portlet.begcachetok=com.vignette.cachetoken&javax.portlet.endcachetok=com.vignette.cachetoken c04260637 - 4% 惠普:HPSBST03001 URL: http://marc.info/?l=bugtraq&m=139758572430452&w=2 惠普:HPSBST03004 URL: http://marc.info/?l=bugtraq&m=139905653828999&w=2 惠普:HPSBST03015 URL: http://marc.info/?l=bugtraq&m=139824923705461&w=2 惠普:HPSBST03016 URL: http://marc.info/?l=bugtraq&m=139842151128341&w=2 惠普:HPSBST03027 URL: http://marc.info/?l=bugtraq&m=139905868529690&w=2 惠普:SSRT101846 URL: http://marc.info/?l=bugtraq&m=142660345230545&w=2 MANDRIVA: MDVSA-2015:062 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2015:062~~(过时的来源) MISC: http://blog.fox-it.com/2014/04/08/openssl-heartbleed-bug-live-blog/ MISC: http://heartbleed.com/ MISC: https://blog.torproject.org/blog/openssl - bug - cve - 2014 - 0160 MISC: https://gist.github.com/chapmajs/10473815 MISC: https://sku11army.blogspot.com/2020/01/heartbleed-hearts-continue-to-bleed.html MISC: https://www.cert.fi/en/reports/2014/vulnerability788210.html MISC: https://yunus - shn.medium.com/ricon -工业-细胞-路由器heartbleed - - 2634221 c02bd攻击 URL: https://yunus - shn.medium.com/ricon -工业-细胞-路由器heartbleed - - 2634221 c02bd攻击 MLIST (syslog-ng-announce): 20140411 syslog-ng溢价版5 LTS (5.0.4a)已经被释放 URL: https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-April/000184.html MLIST (tomcat-dev): 20190319 svn提交:r1855831 [26/30] - tomcat /网站/树干:/ docs / xdocs / URL: https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d@ cdev.tomcat.apache.org % 3 e % 3 MLIST (tomcat-dev): 20190325 svn提交:r1856174 [26/29] - tomcat /网站/树干:文档/ xdocs / xdocs /样式表 URL: https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2@ cdev.tomcat.apache.org % 3 e % 3 MLIST (tomcat-dev): 20200203 svn提交:r1873527 [26/30] - tomcat /网站/箱子/ docs / URL: https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d@ cdev.tomcat.apache.org % 3 e % 3 MLIST (tomcat-dev): 20200213 svn提交:r1873980 [31/34] - tomcat /网站/箱子/ docs / URL: https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220@ cdev.tomcat.apache.org % 3 e % 3 红帽:RHSA-2014:0376 URL: http://rhn.redhat.com/errata/rhsa - 2014 - 0376. - html 红帽:RHSA-2014:0377 URL: http://rhn.redhat.com/errata/rhsa - 2014 - 0377. - html 红帽:RHSA-2014:0378 URL: http://rhn.redhat.com/errata/rhsa - 2014 - 0378. - html 红帽:RHSA-2014:0396 URL: http://rhn.redhat.com/errata/rhsa - 2014 - 0396. - html SECTRACK: 1030026 URL: http://www.securitytracker.com/id/1030026 SECTRACK: 1030074 URL: http://www.securitytracker.com/id/1030074 SECTRACK: 1030077 URL: http://www.securitytracker.com/id/1030077 SECTRACK: 1030078 URL: http://www.securitytracker.com/id/1030078 SECTRACK: 1030079 URL: http://www.securitytracker.com/id/1030079 SECTRACK: 1030080 URL: http://www.securitytracker.com/id/1030080 SECTRACK: 1030081 URL: http://www.securitytracker.com/id/1030081 SECTRACK: 1030082 URL: http://www.securitytracker.com/id/1030082 SECUNIA: 57347 URL: http://secunia.com/advisories/57347 SECUNIA: 57483 URL: http://secunia.com/advisories/57483 SECUNIA: 57721 URL: http://secunia.com/advisories/57721 SECUNIA: 57836 URL: http://secunia.com/advisories/57836 SECUNIA: 57966 URL: http://secunia.com/advisories/57966 SECUNIA: 57968 URL: http://secunia.com/advisories/57968 SECUNIA: 59139 URL: http://secunia.com/advisories/59139 SECUNIA: 59243 URL: http://secunia.com/advisories/59243 SECUNIA: 59347 URL: http://secunia.com/advisories/59347 SUSE: SUSE-SA: 2014:002 URL: http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html SUSE: openSUSE-SU-2014:0492 URL: http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html SUSE: openSUSE-SU-2014:0560 URL: http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html UBUNTU: usn - 2165 - 1 URL: http://www.ubuntu.com/usn/usn - 2165 - 1
分配中央社
红帽公司。
创建日期记录
20131203	免责声明:记录创建日期可能反映了CVE ID分配或保留的时候,,不一定表示当发现了这个漏洞,与受影响的供应商,在CVE公开披露,或更新。
阶段(遗留)
分配(20131203)
票(遗留)

评论(遗留)

提出(遗留)
N /一个
这是一个记录CVE列表,它提供了共同的标识符公开已知的网络安全漏洞。
CVE使用关键字搜索: 你也可以搜索参考使用CVE参考地图。
更多信息:CVE请求Web表单(从下拉框中选择“其他”)

回到顶部

cve - 2014 - 0160