Description
The X509_to_X509_REQ function in crypto/x509/x509_req.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow attackers to cause a denial of service (NULL pointer dereference and application crash) via an invalid certificate key.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Drive for WordPress Information Disclosure (2.2)
Envoy Proxy Use After Free Vulnerability (CVE-2021-43826)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.10)
WordPress Plugin Default Facebook Thumbnails Multiple Vulnerabilities (0.4)