CVE-2011-4109
Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.
Date published : 2012-01-05
http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html