The flaw gives an attacker the ability to use a single TLS record to take out remote machines that are running a vulnerable version of the OpenSSL software. The OpenSSL team has released a patch for the vulnerability, which affects versions 0.9.8f-0.8.8m. The vulnerability affects certain incorrectly formatted records that can cause an OpenSSL client or server to crash due to a read attempt at NULL. Users of the vulnerable versions should upgrade immediately, according to the team.
Source: https://threatpost.com/openssl-flaw-can-crash-remote-machines-032910/73752/