Description
Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data.
Remediation
References
Related Vulnerabilities
WordPress Plugin Weaver Xtreme Theme Support Cross-Site Scripting (6.2.6)
WordPress Plugin Booking calendar, Appointment Booking System Security Bypass (2.2.2)
WordPress Plugin GA Top post for WP by Asentechllc Security Bypass (1.0)
IBM RTC Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2020-4544)