CVE-2021-3449 – NULL pointer deref in signature_algorithms processing

A malicoiusly crafted renegotiation message can provoke a NULL pointer dereference in a SSL server application.

We integrated the fix in NRSW version 4.5.0.102. NRSW versions 4.4 and older are not affected by this CVE.

More information:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3449