Ubuntu Security Notice 1018-1 - Rob Hulswit discovered a race condition in the OpenSSL TLS server extension parsing code when used within a threaded server. A remote attacker could trigger this flaw to cause a denial of service or possibly execute arbitrary code with application privileges.
6061d4d1c08fc368362d3bae3287dcd126c1c778172a5f8f4ef56c6098cce0d7