OpenSSL Heartbleed (CVE-2014-0160)
|
System information
|
|
|
Affected software |
IBM |
Description
|
As reported by the OpenSSL Project, OpenSSL is vulnerable to TLS heartbeat read overrun (CVE-2014-0160). OpenSSL versions 1.0.1 through 1.0.1f contain a flaw in its implementation of the TLS/DTLS (transport layer security protocols) heartbeat functionality. Please see the Heartbleed website for more details. IBM is analyzing its products to determine which ones are affected by this vulnerability. Affected IBM products will be issuing fixes as soon as possible. Please actively monitor both your
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/openssl_heartbleed_cve_2014_0160?lang=en_us |
Standar resources
|
Property |
Value |
CVE |
CVE-2014-0160 ,CVE-2014-0411 ,CVE-2014-0033 ,CVE-2013-4322 ,CVE-2013-5791 ,CVE-2013-5763 ,CVE-2013-5879 ,CVE-2013-6747 and CVE-2014-0076. |