Description
OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP DSGVO Tools (GDPR) Security Bypass (3.1.23)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17302)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2024-1635)
WordPress 4.4.x Possible SQL Injection Vulnerability (4.4 - 4.4.11)