The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2012-01-06T01:00:00
Updated: 2014-03-18T11:57:00
Reserved: 2011-12-07T00:00:00
Link: CVE-2012-0027
JSON object: View
NVD Information
Status : Modified
Published: 2012-01-06T01:55:01.050
Modified: 2014-03-26T04:27:05.177
Link: CVE-2012-0027
JSON object: View
Redhat Information
No data.
CWE