First published: Wed Mar 28 2018(Updated: )
It was discovered that OpenSSL incorrectly handled certain ASN.1 types. A remote attacker could possibly use this issue to cause a denial of service.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libssl1.0.0 | <1.0.2g-1ubuntu13.4 | 1.0.2g-1ubuntu13.4 |
=17.10 | ||
All of | ||
ubuntu/libssl1.0.0 | <1.0.2g-1ubuntu4.11 | 1.0.2g-1ubuntu4.11 |
=16.04 | ||
All of | ||
ubuntu/libssl1.0.0 | <1.0.1f-1ubuntu2.24 | 1.0.1f-1ubuntu2.24 |
=14.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of USN-3611-1 is CVE-2018-0739.
The severity of the OpenSSL vulnerability is not mentioned in the provided information. Please refer to the official references for more details.
The OpenSSL vulnerability could potentially be exploited by a remote attacker to cause a denial of service.
The following versions of libssl are affected by the vulnerability: 1.0.2g-1ubuntu13.4, 1.0.2g-1ubuntu4.11, 1.0.1f-1ubuntu2.24.
To fix the OpenSSL vulnerability, update libssl to the recommended version specified in the official references.