CVE-2008-1672

Priority
Description
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of
service (crash) via a TLS handshake that omits the Server Key Exchange
message and uses "particular cipher suites," which triggers a NULL pointer
dereference.
Notes
Package
Upstream:released (0.9.8g-10.1)
More Information

Updated: 2020-09-10 00:38:31 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)