A Google security researcher has disclosed what he calls an unpatched bug in the main cryptographic library used in newer versions of Windows. The bug essentially creates a never-ending loop within this cryptographic library, Tavis Ormandy says. The researcher says he gave Microsoft a 90-day notice of the bug, but the company had not fixed the flaw as of Tuesday, June 11, when it published its latest Patch Tuesday notification. A Microsoft spokesperson says the company attempted to address the problem as soon as possible, but there were issues in testing the fix.”]
Source: https://www.cuinfosecurity.com/google-researcher-details-windows-cryptographic-library-bug-a-12622