Check Point Information for VU#288574

OpenSSL contains null-pointer assignment in do_change_cipher_spec() function



Vendor Statement

Check Point products are vulnerable to: CAN-2004-0079 and CAN-2004-0081

CAN-2004-0112 is not relevant to Check Point products.

A fix is available for download from the Check Point Web site (

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.