Headline

Contiki-NG tinyDTLS Denial Of Service

An issue was discovered in Contiki-NG tinyDTLS versions through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_cipher_spec, which may cause denial of service.

10 months ago

Packet Storm

Open in Source

#vulnerability #dos #git #ssl

About CVE-2021-42141:[Suggested description]An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_cipher_spec, which may cause denial of service.[VulnerabilityType Other]Improper Handling of exception conditions[Vendor of Product]https://github.com/contiki-ng/tinydtls[Affected Product Code Base]contiki-ng tinydtls - master branch 53a0d97[Affected Component]the service of dtls servers[Attack Type]Remote[Impact Code execution]true[Impact Denial of Service]true[Impact Information Disclosure]true[Reference]https://github.com/contiki-ng/tinydtls/issues/27[Discoverer]jerrytesting

Packet Storm: Latest News

Ubuntu Security Notice USN-7121-3

18 hours ago

Packet Storm

Debian Security Advisory 5818-1

18 hours ago

Packet Storm

Ubuntu Security Notice USN-7124-1

19 hours ago

Packet Storm

Debian Security Advisory 5817-1

19 hours ago

Packet Storm

Mandos Encrypted File System Unattended Reboot Utility 1.8.18

19 hours ago

Packet Storm