FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libressl -- NULL pointer dereference

Affected packages
libressl < 2.2.5
2.3.0 <= libressl < 2.3.1_1

Details

VuXML ID 215e740e-9c56-11e5-90e7-b499baebfeaf
Discovery 2015-12-03
Entry 2015-12-08

The OpenBSD project reports:

A NULL pointer deference could be triggered by a crafted certificate sent to services configured to verify client certificates on TLS/SSL connections.

References

CVE Name CVE-2015-3194
URL https://marc.info/?l=openbsd-announce&t=144920914600002