Description
statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of service (memory consumption) via crafted DTLS messages.
Remediation
References
Related Vulnerabilities
PrestaShop Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-41651)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-45371)
WordPress Plugin CrossSlide jQuery Multiple Vulnerabilities (2.0.5)
Jboss EAP Other Vulnerability (CVE-2023-3629)
Python Integer Overflow or Wraparound Vulnerability (CVE-2010-1449)