OpenSSL Invalid TLS/DTLS Record Processing Lets Remote Users Deny Service
Prior to versions 0.9.8x, 1.0.0j, 1.0.1c
A vulnerability was reported in OpenSSL. A remote user can cause denial of service conditions.
A remote user can send specially crafted TLS/DTLS records to cause denial of service conditions. The CBC mode ciphersuites in TLS 1.1, 1.2 and DTLS are affected, both clients and servers are affected.
DTLS is affected in all versions of OpenSSL. TLS is affected in OpenSSL version 1.0.1 and later.
A remote user can cause denial of service conditions.
The vendor has issued a fix (0.9.8x, 1.0.0j, 1.0.1c).