{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"OpenSSL 0.9.x.","product":{"name":"OpenSSL","vendor":{"name":"OpenSSL","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDeux vuln\u00e9rabili\u00e9s caus\u00e9es par un manque de contr\u00f4le dans le traitement\ndes enregistrements et messages de type DTLS (Datagram Transport Layer\nSecurity), peuvent \u00eatre exploit\u00e9es pour r\u00e9aliser un d\u00e9ni de service par\nconsommation de m\u00e9moire excessive.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-1387","url":"https://www.cve.org/CVERecord?id=CVE-2009-1387"},{"name":"CVE-2009-1379","url":"https://www.cve.org/CVERecord?id=CVE-2009-1379"},{"name":"CVE-2009-1378","url":"https://www.cve.org/CVERecord?id=CVE-2009-1378"},{"name":"CVE-2009-1386","url":"https://www.cve.org/CVERecord?id=CVE-2009-1386"},{"name":"CVE-2009-1377","url":"https://www.cve.org/CVERecord?id=CVE-2009-1377"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Ubuntu USN-792-1 du 25 juin 2009 :","url":"https://lists.ubuntu.com/archives/ubuntu-security-announce/2009-June/000923.html"},{"title":"Site Internet de l'\u00e9diteur OpenSSL :","url":"http://www.openssl.org/"},{"title":"Bulletin de s\u00e9curit\u00e9 IBM du 29 juin 2009 :","url":"http://aix.software.ibm.com/aix/efixes/security/ssl_advisory.asc"}],"reference":"CERTA-2009-AVI-192","revisions":[{"description":"version initiale.","revision_date":"2009-05-19T00:00:00.000000"},{"description":"ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9s OpenSSL, IBM, Ubuntu et aux CVE.","revision_date":"2009-06-30T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"}],"summary":"Deux vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans OpenSSL permettent \u00e0 un utilisateur\ndistant malintentionn\u00e9 de provoquer un d\u00e9ni de service.\n","title":"Vuln\u00e9rabilit\u00e9s dans OpenSSL","vendor_advisories":[{"published_at":null,"title":"Bulletins de s\u00e9curit\u00e9 OpenSSL #1838, #1923, #1930 et #1931","url":"http://rt.openssl.org/Ticket/Display.html?id=1931"}]}