Description
Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.
Remediation
References
Related Vulnerabilities
WordPress Plugin LearnDash LMS SQL Injection (4.5.3)
WordPress Plugin WooCommerce Privilege Escalation (3.5.0)
WordPress Plugin Captchinoo, Google recaptcha for admin login page Security Bypass (2.3)
WordPress Plugin User Profile Picture Information Disclosure (2.4.0)
Rukovoditel Cross-site Scripting (XSS) Vulnerability (CVE-2019-7541)