openssl -- LTS security update

2015-12-03T00:00:00
ID DLA-358
Type debian
Reporter Debian
Modified 2015-12-03T00:00:00

Description

When presented with a malformed X509_ATTRIBUTE structure OpenSSL will leak memory. This structure is used by the PKCS#7 and CMS routines so any application which reads PKCS#7 or CMS data from untrusted sources is affected. SSL/TLS is not affected.