ELSA-2015-0716 -- Oracle openssl
|ID: oval:org.secpod.oval:def:1500952||Date: (C)2015-03-25 (M)2018-05-05|
|Class: PATCH||Family: unix|
An invalid pointer use flaw was found in OpenSSL's ASN1_TYPE_cmp() function. A remote attacker could crash a TLS/SSL client or server using OpenSSL via a specially crafted X.509 certificate when the attacker-supplied certificate was verified by the application.