| Severity : |
High
|
| Published : |
2010-03-05
|
| Modified : |
2011-08-26
|
| Base Score : |
10.0
|
| Details : |
OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand function calls in (1) crypto/bn/bn_div.c, (2) crypto/bn/bn_gf2m.c, (3) crypto/ec/ec2_smpl.c, and (4) engines/e_ubsec.c, which has unspecified impact and context-dependent attack vectors.
|
| Product/Version : |
Carrier Grade CGE 6.0
Pro 4.x
CGE 4.x
Mobilinux 4.x
Pro 5.0
CGE 5.x
Mobilinux 5.x
Mobilinux 5.0.24
MVL 5 Atom
Pro 5.0.24
MVL 5 OMAP3
MVL 5 OMAP3530
|
|
CVE Vulnerabilities List CVE-2009
