Description

Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK is enabled, allows remote attackers to have an unspecified impact by triggering failure of a policy check.

Remediation

References

CVE-2011-4109

Related Vulnerabilities

PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-0244)

Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)

EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14331)

IBM RTC Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2020-4547)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-36121)

Severity

Critical

Classification

CVE-2011-4109

Tags

Missing Update Known Vulnerabilities