CVE-2008-1672

Priority
Low
Description
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of
service (crash) via a TLS handshake that omits the Server Key Exchange
message and uses "particular cipher suites," which triggers a NULL pointer
dereference.
References
Bugs
Package
Upstream:released (0.9.8g-10.1)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:32:25 UTC (commit 9756)