Upstream information
Description
OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows remote attackers to cause a denial of service (assertion failure) via an X.509 certificate containing certificate-extension data associated with (1) IP address blocks or (2) Autonomous System (AS) identifiers.NVD CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P)
Novell/SUSE information
Novell Bugzilla entry: 739719, 758060 SUSE Security Advisories:- SUSE-SU-2012:0084-1, published Mon, 16 Jan 2012 17:08:28 +0100 (CET)
- openSUSE-SU-2012:0083-1, published Mon, 16 Jan 2012 17:08:14 +0100 (CET)
- openSUSE-SU-2013:0336-1, published Mon, 25 Feb 2013 11:04:39 +0100 (CET)