CVE-2012-0027

2012-01-06T01:55:00
ID CVE-2012-0027
Type cve
Reporter cve@mitre.org
Modified 2014-03-26T04:27:00

Description

The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service (daemon crash) via crafted data from a TLS client.