NuytsTech Security

CVE-2016-6308

by ·

statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consumption) via crafted DTLS messages.

Date published : 2016-09-26

http://www.securityfocus.com/bid/93151

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

Tags: