First published: Thu Jan 19 2012(Updated: )
OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4108.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
OpenSSL OpenSSL | =0.9.8s | |
OpenSSL OpenSSL | =1.0.0f |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.