AIX OpenSSL Advisory : openssl_advisory12.asc (FREAK)

The version of OpenSSL installed on the remote AIX host is affected by the following vulnerabilities : - The BIGNUM squaring BNsqr implementation does not properly calculate the square of a BIGNUM value. This allows remote attackers to defeat cryptographic protection mechanisms. CVE-2014-3570 - A...

MGASA-2015-0022 Updated openssl packages fix security vulnerabilities

A carefully crafted DTLS message can cause a segmentation fault in OpenSSL due to a NULL pointer dereference. This could lead to a Denial Of Service attack CVE-2014-3571. A memory leak can occur in the dtls1bufferrecord function under certain conditions. In particular this could occur if an...