mark :: blog

04 Jun 2014: OpenSSL timelines

Here is the timeline from my (OpenSSL) perspective for the recent CCS Injection (MITM) vulnerability as well as the other flaws being fixed today.

SSL/TLS MITM vulnerability (CVE-2014-0224)

DTLS recursion flaw (CVE-2014-0221)

DTLS invalid fragment vulnerability (CVE-2014-0195)

Anonymous ECDH denial of service (CVE-2014-3470)

(All times UTC)

Post copied from my original source on Google+ https://plus.google.com/u/0/113970656101565234043/posts/L8i6PSsKJKs

Created: 04 Jun 2014

0 comments (new comments disabled)

Hi! I'm Mark Cox. This blog gives my thoughts and opinions on my security work, open source, fedora, home automation, and other topics.