CVE-2009-1386
EPSS 47.6%發布日:2009/6/4修改日:2026/4/28
描述
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello.
受影響套件(1)
- Debian/opensslfrom 0, < 0.9.8k-1