CLSA-2024-1718639724

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2024-1718639724

Upstream

CVE-2023-3446

CVE-2023-5678

Published

2024-06-17T15:55:27Z

Modified

2026-06-01T00:33:12.253593602Z

Summary

openssl: Fix of 2 CVEs

Details

CVE-2023-5678: Fix that DHcheckpubkey() and DHgenerate_key() don't check large modulus
CVE-2023-3446: Fix that checking excessively long DH keys or parameters may be very slow.

References

https://errata.cloudlinux.com/centos8.4-els/CLSA-2024-1718639724.html

Affected packages

TuxCare:CentOS:8.4 / openssl

Package

Name: openssl
Purl: pkg:rpm/tuxcare/openssl?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json"

TuxCare:CentOS:8.4 / openssl-devel

Package

Name: openssl-devel
Purl: pkg:rpm/tuxcare/openssl-devel?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json"

TuxCare:CentOS:8.4 / openssl-libs

Package

Name: openssl-libs
Purl: pkg:rpm/tuxcare/openssl-libs?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json"

TuxCare:CentOS:8.4 / openssl-perl

Package

Name: openssl-perl
Purl: pkg:rpm/tuxcare/openssl-perl?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json"

TuxCare:CentOS:8.4 / openssl-static

Package

Name: openssl-static
Purl: pkg:rpm/tuxcare/openssl-static?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1g-15.el8.4.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1718639724.json"