Various security vulnerabilities have been fixed in OpenSSL:
- DTLS plaintext recovery attack (CVE-2011-4108)
- double-free in Policy Checks (CVE-2011-4109)
- uninitialized SSL 3.0 padding (CVE-2011-4576)
- malformed RFC 3779 data can cause assertion failures
(CVE-2011-4577)
- SGC restart DoS attack (CVE-2011-4619)