CVE-2008-0891
Publication date 29 May 2008
Last updated 24 July 2024
Ubuntu priority
Double free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a malformed Client Hello packet. NOTE: some of these details are obtained from third party information.
Notes
References
Related Ubuntu Security Notices (USN)
- USN-620-1
- OpenSSL vulnerabilities
- 26 June 2008