Advisory ID

12264

Release date

2016-03-02

Last Updated

2016-03-02

Issue Severity

No Impact

Source

Source

OpenSSL.org

Release date

2016-03-01

CVSS v2 Base Score

LOW

Problem Description

A double free bug was discovered when OpenSSL parses malformed DSA private keys and could lead to a DoS attack or memory corruption for applications that receive DSA private keys from untrusted sources.

Find more about CVE-2016-0705 from MITRE CVE directory.

Impact

None.

Affected Products

None of the FoxT products support DSA-based crypto and they are therefore not affected by this vulnerability.

Workaround

N/A.

Obtaining Fixed Software

N/A.

External References

OpenSSL Security Advisory.










Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018