Description
The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.
Remediation
References
Related Vulnerabilities
WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.25)
Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.8.11)
Oracle JRE CVE-2013-1571 Vulnerability (CVE-2013-1571)
WordPress Plugin Newsletter Manager Multiple Cross-Site Scripting Vulnerabilities (1.0.1)
WordPress Plugin Modern Events Calendar Lite Cross-Site Scripting (5.22.1)