Lucene search

K
opensslOpenSSLOPENSSL:CVE-2011-4109
HistoryJan 04, 2012 - 12:00 a.m.

Vulnerability in OpenSSL CVE-2011-4109

2012-01-0400:00:00
www.openssl.org
19

7.5 High

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

If X509_V_FLAG_POLICY_CHECK is set in OpenSSL 0.9.8, then a policy check failure can lead to a double-free. The bug does not occur unless this flag is set. Users of OpenSSL 1.0.0 are not affected.