Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2006-7250

The mime_hdr_cmp function in crypto/asn1/asn_mime.c in OpenSSL 0.9.8t and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted S/MIME message.

Related bugs and status

CVE-2006-7250 (Candidate) is related to these bugs:

Bug #1811531: remote execution vulnerability

		In	Importance	Status
1811531	remote execution vulnerability	zeromq3 (Ubuntu)	Undecided	Fix Released
1811531	remote execution vulnerability	zeromq3 (Debian)	Unknown	Fix Released
1811531	remote execution vulnerability	zeromq (Suse)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [openssl-dev] 20120210...
MLIST: [oss-security] 2012022...
MLIST: [oss-security] 2012022...
CONFIRM: http://cvs.openssl.org...
CONFIRM: https://bugzilla.novel...
CONFIRM: https://bugzilla.redha...
UBUNTU: USN-1424-1
SECUNIA: 48516
SECUNIA: 48899
REDHAT: RHSA-2009:1335
SECUNIA: 36533
MLIST: [openssl-dev] 20060829...
HP: HPSBUX02782
HP: SSRT100844
SECUNIA: 48153
BID: 52181