Vulnerability in OpenSSL CVE-2009-3245
It was discovered that OpenSSL did not always check the return value of the bnwexpand function. An attacker able to trigger a memory allocation failure in that function could cause an application using the OpenSSL library to crash or, possibly, execute arbitrary code. Found by Martin Olsson, Neel...