Lucene search

K
cvelistRedhatCVELIST:CVE-2016-2177
HistoryJun 20, 2016 - 12:00 a.m.

CVE-2016-2177

2016-06-2000:00:00
redhat
www.cve.org

8.4 High

AI Score

Confidence

Low

0.152 Low

EPSS

Percentile

95.9%

OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.

References