SUSE CVE-2016-6305

The ssl3readbytes function in record/reclayers3.c in OpenSSL 1.1.0 before 1.1.0a allows remote attackers to cause a denial of service infinite loop by triggering a zero-length record in an SSLpeek call...

OpenSSL SSL_peek() Denial of Service Vulnerability

OpenSSL is an open source implementation of SSL used to enable strong encryption of network communications and is now widely used in a variety of web applications. OpenSSL 1.1.0 SSL/TLS hangs after receiving an empty record during an SSLpeek call, which can be exploited by malicious users to...