The OpenSSL development team has announced that a security audit by AL
Digital Ltd and The Bunker, under the DARPA CHATS program, has revealed
remotely exploitable buffer overflow conditions in the OpenSSL code
Additionally, the ASN1 parser in OpenSSL has a potential DoS attack
independently discovered by Adi Stav and James Yonan
CAN-2002-0655 ...