Description
The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2020-0852 Vulnerability (CVE-2020-0852)
WordPress Plugin Relevanssi Premium-A Better Search Multiple Vulnerabilities (1.14.4)
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.21)
MySQL CVE-2014-4258 Vulnerability (CVE-2014-4258)
Oracle Database Server CVE-2011-0832 Vulnerability (CVE-2011-0832)