Description
OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c.
Remediation
References
Related Vulnerabilities
Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2021-22880)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Information Disclosure (5.1.2)
WordPress Plugin Ninja Popups Multiple Vulnerabilities (4.5.3)
WordPress Plugin Caldera Forms-More Than Contact Forms Information Disclosure (1.3.5.2)
IBM WebSEAL Improper Input Validation Vulnerability (CVE-2020-4461)