Description
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the "openssl ts" command.
Remediation
References
Related Vulnerabilities
WordPress 5.1.x Multiple Vulnerabilities (5.1 - 5.1.3)
Perl Use of Externally-Controlled Format String Vulnerability (CVE-2012-1151)
WordPress Plugin Push Notifications for WordPress (Lite) Cross-Site Request Forgery (6.0)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-6207)
Internet Information Services Other Vulnerability (CVE-2000-0457)