OpenSSL Double Free Memory Vulnerability

Last Update Date: 5 Jun 2015 09:30 Release Date: 5 Jun 2015 3947 Views

RISK: Medium Risk

Medium Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

A vulnerability was identified in OpenSSL. The impact was not specified.

A remote server can return a specially crafted NewSessionTicket message to a connected multi-threaded client.

It may cause a double free memory error.

System / Technologies affected

  •  OpenSSL

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a source code fix, available at:
    https://git.openssl.org/?p=openssl.git;a=commit;h=98ece4eebfb6cd45cc8d550c6ac0022965071afc 

Vulnerability Identifier

Source

Related Link

Share with

Previous

PHP Multiple Vulnerabilities

2 Jun 2015 3657 Views

Next

Microsoft Internet Explorer Cumulative Security Update

10 Jun 2015 3547 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY