A NULL pointer de-reference and a crash may occur leading to a possible denial of service attack which is illustrated in gbhackers. If an attacker controls the functions of the function of the GENERAL_NAME_cmp, he can crash the entire system. Affected versions: OpenSSL 1.1.1 and 1.0.2. If the attacker tricks a client machine or a server machine or server machine to check for a malicious certificate against a malicious CRL, then the attack can be demonstrated to work against those tools. The vulnerability is not yet tested on the unsupported versions yet.”]