Red Hat Security Advisory 2016-1940-01
https://packetstormsecurity.com/files/138870/RHSA-2016-1940-01.txt
https://packetstormsecurity.com/files/138870/RHSA-2016-1940-01.txthttps://packetstormsecurity.com/files/138870/Red-Hat-Security-Advisory-2016-1940-01.htmlTue, 27 Sep 2016 19:32:00 GMTRed Hat Security Advisory 2016-1940-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Security Fix: A memory leak flaw was found in the way OpenSSL handled TLS status request extension data during session renegotiation. A remote attacker could cause a TLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory, if it enabled OCSP stapling support.