USN-6709-1: OpenSSL vulnerabilities

First published: Thu Mar 21 2024(Updated: )

It was discovered that checking excessively long DH keys or parameters may be very slow. A remote attacker could possibly use this issue to cause OpenSSL to consume resources, resulting in a denial of service. (CVE-2023-3446) After the fix for CVE-2023-3446 Bernd Edlinger discovered that a large q parameter value can also trigger an overly long computation during some of these checks. A remote attacker could possibly use this issue to cause OpenSSL to consume resources, resulting in a denial of service. (CVE-2023-3817) David Benjamin discovered that generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. A remote attacker could possibly use this issue to cause OpenSSL to consume resources, resulting in a denial of service. (CVE-2023-5678) Bahaa Naamneh discovered that processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack. (CVE-2024-0727)

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/usn
• source/Ubuntu
• anchor-related/USN-6622-1
• anchor-related/USN-6632-1
• anchor-related/USN-6435-1
• anchor-related/USN-6450-1
• anchor-related/USN-6435-2
• agent/software-canonical-lookup
• agent/severity
• agent/title
• agent/last-modified-date
• agent/references
• agent/softwarecombine
• agent/tags
• agent/description
• agent/first-publish-date
• agent/type
• agent/event
• package-manager/ubuntu
• vendor/ubuntu
• canonical/ubuntu ubuntu
• version/ubuntu ubuntu/18.04