Vulnerabilities

CVE-2016-6307

by Fred · 26/09/2016

The state-machine implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consumption) via crafted TLS messages, related to statem/statem.c and statem/statem_lib.c.

Date published : 2016-09-26

http://www.securityfocus.com/bid/93152

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Related

Tags: Cybersecurity Alert