VDB
RHSA-2014%3A1256
RHSA-2014%3A1256
PUBLISHED
CVSS 5 MEDIUM
A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory.
Risk Scores
CVSS 2.0
5
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat JBoss Web Server 2.1 |
Timeline
- Sep 17, 2014 CVE Published
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- May 14, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2014:1256 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver&downloadType=securityPatches&version=2.1.0 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1127490 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1127499 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1127500 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1127503 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1256.json advisory
- https://access.redhat.com/security/cve/CVE-2014-3505 advisory
- https://www.cve.org/CVERecord?id=CVE-2014-3505 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-3505 advisory
- https://www.openssl.org/news/secadv_20140806.txt advisory
- https://access.redhat.com/security/cve/CVE-2014-3506 advisory
- https://www.cve.org/CVERecord?id=CVE-2014-3506 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-3506 advisory
- https://access.redhat.com/security/cve/CVE-2014-3508 advisory
- https://www.cve.org/CVERecord?id=CVE-2014-3508 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-3508 advisory
- https://access.redhat.com/security/cve/CVE-2014-3510 advisory
- https://www.cve.org/CVERecord?id=CVE-2014-3510 advisory
…and 1 more