- Home
- CVEs with nessus.description==Neel Mehta discovered that an incorrectly formatted ClientHello
handshake message could cause OpenSSL to parse past the end of the
message. This allows an attacker to crash an application using OpenSSL
by triggering an invalid memory access. Additionally, some
applications may be vulnerable to expose contents of a parsed OCSP
nonce extension.
Packages in the oldstable distribution (lenny) are not affected by
this problem.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top