A denial-of-service vulnerability exists in OpenSSL. A remote, unauthenticated attacker can send *-CHACHA20-POLY1305 ciphersuites with corrupted larger payloads and create a denial of service condition. This vulnerability is not considered to be exploitable beyond a denial of service.