CVE-2013-6449

Priority
Description
The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2
obtains a certain version number from an incorrect data structure, which
allows remote attackers to cause a denial of service (daemon crash) via
crafted traffic from a TLS 1.2 client.
Assigned-to
mdeslaur
Notes
mdeslauronly 1.0.1+
More Information

Updated: 2020-01-29 19:48:17 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)