Description
Integer overflow in the MDC2_Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.
Remediation
References
Related Vulnerabilities
Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)
WordPress Plugin SendPress Newsletters Multiple Vulnerabilities (1.1.7.21)
Joomla! Core 3.x.x Information Disclosure (3.6.0 - 3.9.12)
WordPress Plugin Coming Soon Possible Remote Code Execution (1.1.3)
WordPress Plugin Poll, Survey, Questionnaire and Voting system SQL Injection (1.2.4)