On Thu, Mar 25, 2010 at 02:45:41PM -0400, A. Maitland Bottoms wrote:
Package: openssl
Version: 0.9.8g-15+lenny6
Tags: lenny,security,patch
This bug report is based upon CVE-2009-3245
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand
function calls in (1)
Package: openssl
Version: 0.9.8g-15+lenny6
Tags: lenny,security,patch
This bug report is based upon CVE-2009-3245
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand
function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3)
crypto/ec/ec2_smpl.c, and (4)
2 matches
Mail list logo