漏洞信息

漏洞名称:OpenSSL 'BN_bn2dec()' Function Out of Bounds Write Denial of Service Vulnerability

漏洞分类:Failure to Handle Exceptional Conditions                        BugtraqID:92557              

远程溢出:Yes                           本地溢出:No

发布日期:2016-08-16 12:00:00              更新日期:2016-08-16 12:00:00

漏洞作者:Shi Lei

受影响的程序版本

OpenSSL Project OpenSSL 0

漏洞讨论

OpenSSL is prone to denial-of-service vulnerability.

An attacker may exploit this issue to crash the affected application, resulting in denial-of-service condition.

漏洞利用

An attacker can use readily available tools to exploit this issue.

解决方案

Updates are available. Please see the references or vendor advisory for more information.

相关参考

https://www.openssl.org/

https://bugzilla.redhat.com/show_bug.cgi?id=1367340