On 22 September 2016 OpenSSL released a security advisory for the following CVEs:
- CVE-2016-6305 - SSL_peek() hang on empty record
- CVE-2016-6307 - tls_get_message_header
- CVE-2016-6308 - Excessive allocation of memory in dtls1_preprocess_fragment
- CVE-2016-6303 - OOB write in MDC2_Update
- CVE-2016-6302 - Malformed SHA512 ticket DoS
- CVE-2016-2182 - OOB write in BN_bn2dec
- CVE-2016-2180 - OOB read in TS_OBJ_print_bio
- CVE-2016-2177 - Pointer arithmetic undefined behaviour
- CVE-2016-2178 - Constant time flag not preserved in DSA signing
- CVE-2016-2181 - CVE-2016-2179 (D)TLS flaws
Check Point products are not vulnerable to these CVE's.
Notes: