Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1018-1
Solution
Please Install the Updated Packages.
Insight
Rob Hulswit discovered a race condition in the OpenSSL TLS server extension parsing code when used within a threaded server. A remote attacker could trigger this flaw to cause a denial of service or possibly execute arbitrary code with application privileges.
(CVE-2010-3864)
Affected
openssl vulnerability on Ubuntu 8.04 LTS ,
Ubuntu 9.10 ,
Ubuntu 10.10
Severity
Classification
-
CVE CVE-2010-3864 -
CVSS Base Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C
Related Vulnerabilities