CVE-2008-1672

Priority
Low
Description
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of
service (crash) via a TLS handshake that omits the Server Key Exchange
message and uses "particular cipher suites," which triggers a NULL pointer
dereference.
References
Bugs
Package
Upstream:released (0.9.8g-10.1)
Ubuntu 8.04 LTS (Hardy Heron):released (0.9.8g-4ubuntu3.3)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:43 UTC (commit 5347)