| Revision Date: | 2014-04-07 | Version: | 5 |
| Title: | The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake |
| Description: | The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next Protocol Negotiation record in a TLS handshake. |
| Family: | unix | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2013-4353
|
| Platform(s): | CentOS Linux 6
Red Hat Enterprise Linux 6
| Product(s): | OpenSSL
|
| Definition Synopsis |
| OpenSSL 1.0.1 before 1.0.1f |