Todd C. Miller announced some denial of service bugs affecting OpenSSL in OpenBSD 3.2 and 3.3:

"The use of certain ASN.1 encodings or malformed public keys may allow an attacker to mount a denial of service attack against applications linked with ssl(3). This does not affect OpenSSH."

From: Todd C. Miller [email blocked]
To:  security-announce
Subject: DoS bugs in OpenSSL
Date: Fri, 03 Oct 2003 16:45:24 -0600

The use of certain ASN.1 encodings or malformed public keys may
allow an attacker to mount a denial of service attack against
applications linked with ssl(3).  This does not affect OpenSSH.

For full details, please see the OpenSSL advisory:
    http://www.openssl.org/ne