CLSA-2023-1693419971
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1693419971.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2023-1693419971
- Upstream
- Published
- 2023-08-30T18:26:15Z
- Modified
- 2026-06-04T09:47:18.513056715Z
- Summary
- Fix CVE(s): CVE-2023-3817
- Details
-
- SECURITY UPDATE: Checking excessively long DH keys or parameters may be
very slow. Where the key or parameters that are being checked have been
obtained from an untrusted source this may lead to a Denial of Service.
- debian/patches/CVE-2023-3817.patch: Add a prior check and process only a correct DH keys
- CVE-2023-3817
- SECURITY UPDATE: Checking excessively long DH keys or parameters may be
very slow. Where the key or parameters that are being checked have been
obtained from an untrusted source this may lead to a Denial of Service.
- References
Affected packages
TuxCare:Ubuntu:18.04 / libssl-dev
Package
- Name
- libssl-dev
- Purl
- pkg:deb/tuxcare/libssl-dev?distro=ubuntu-18.04
TuxCare:Ubuntu:18.04 / libssl-doc
Package
- Name
- libssl-doc
- Purl
- pkg:deb/tuxcare/libssl-doc?distro=ubuntu-18.04
TuxCare:Ubuntu:18.04 / libssl1.1
Package
- Name
- libssl1.1
- Purl
- pkg:deb/tuxcare/libssl1.1?distro=ubuntu-18.04