Description
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted session ticket that triggers an integrity-check failure.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2021-24104 Vulnerability (CVE-2021-24104)
WordPress Plugin Premium Blocks for Gutenberg Unspecified Vulnerability (1.7.4)
WordPress Plugin MyBookTable Bookstore by Author Media Cross-Site Scripting (3.2.1)
MongoDb Improper Input Validation Vulnerability (CVE-2013-1892)
Apache HTTP Server Improper Encoding or Escaping of Output Vulnerability (CVE-2024-38474)