Description
statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consumption) via crafted DTLS messages.
Remediation
References
Related Vulnerabilities
WordPress CVE-2019-17673 Vulnerability (CVE-2019-17673)
WordPress Plugin WP Smart Security PHP Object Injection (1.0)
Oracle Database Server Other Vulnerability (CVE-2005-3443)
Microsoft SQL Server Other Vulnerability (CVE-2000-0402)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2202)