Anton Romanov

**Name of the Vulnerable Software and Affected Versions** OpenSSL (affected versions not specified) **Description** The AES-XTS cipher decryption implementation for 64-bit ARM platforms contains a bug that could cause it to read past the input buffer, leading to a crash. Applications that use the AES-XTS algorithm on the 64-bit ARM platform can crash in rare circumstances. The AES-XTS algorithm is usually used for disk encryption. If an attacker can control the size and location of the ciphertext buffer being decrypted by an application using AES-XTS on 64-bit ARM, the application is affected. This issue is considered to be of low severity. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.