FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wolfssl -- DDoS amplification in DTLS

Affected packages
wolfssl < 3.6.8

Details

VuXML ID 3d1372e1-7822-4fd8-b56e-5ee832afbd96
Discovery 2015-09-18
Entry 2016-01-05

Sebastian Ramacher identified an error in wolfSSL's implementation of the server side of the DTLS handshake, which could be abused for DDoS amplification or a DoS on the DTLS server itself.

References

CVE Name CVE-2015-6925
URL https://github.com/IAIK/wolfSSL-DoS
URL https://www.wolfssl.com/wolfSSL/Blog/Entries/2015/9/17_Two_Vulnerabilities_Recently_Found%2C_An_Attack_on_RSA_using_CRT_and_DoS_Vulnerability_With_DTLS.html