Candidate: CVE-2016-6309
PublicDate: 2016-09-26 19:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6309
 https://www.openssl.org/news/secadv/20160926.txt
Description:
 statem/statem.c in OpenSSL 1.1.0a does not consider memory-block movement
 after a realloc call, which allows remote attackers to cause a denial of
 service (use-after-free) or possibly execute arbitrary code via a crafted
 TLS session.
Ubuntu-Description: 
Notes: 
 mdeslaur> 1.1.0 only
Bugs: 
Priority: high
Discovered-by: Robert Święcki
Assigned-to: 
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_openssl:
upstream_openssl: released (1.1.0a)
precise_openssl: not-affected
trusty_openssl: not-affected
trusty/esm_openssl: not-affected
vivid/ubuntu-core_openssl: not-affected
vivid/stable-phone-overlay_openssl: not-affected
xenial_openssl: not-affected
esm-infra/xenial_openssl: not-affected
devel_openssl: not-affected

Patches_openssl098:
upstream_openssl098: needs-triage
precise_openssl098: not-affected
trusty_openssl098: not-affected
trusty/esm_openssl098: DNE (trusty was not-affected)
vivid/ubuntu-core_openssl098: DNE
vivid/stable-phone-overlay_openssl098: DNE
xenial_openssl098: DNE
devel_openssl098: DNE