If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer overread.[CVE-2017-3735]
There is a carry propagating bug in the x86_64 Montgomery squaring procedure. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen. [CVE-2017-3736] This bug only affects FreeBSD 11.x.
