Description
The sigalgs implementation in t1_lib.c in OpenSSL 1.0.2 before 1.0.2a allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) by using an invalid signature_algorithms extension in the ClientHello message during a renegotiation.
Remediation
References
Related Vulnerabilities
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3)
WebLogic CVE-2016-0574 Vulnerability (CVE-2016-0574)
Oracle Database Server CVE-2013-3774 Vulnerability (CVE-2013-3774)
WordPress Plugin iSlidex TimThumb Arbitrary File Upload (2.7)
WordPress Plugin Restricted Site Access Unspecified Vulnerability (2.0)