Description
Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.
Remediation
References
Related Vulnerabilities
Chamilo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-9540)
WordPress Plugin WP Google Fonts Cross-Site Scripting (3.1.3)
WordPress Plugin MetaSlider Cross-Site Scripting (2.6.2)
Jboss EAP Configuration Vulnerability (CVE-2013-4128)
WordPress Plugin Quick Contact Form Cross-Site Scripting (6.0)