Lucene search
OracleLinuxELSA-2024-12056HistoryJan 10, 2024 - 12:00 a.m.
openssl security update
2024-01-1000:00:00
linux.oracle.com
18
openssl
security update
cve fixes
pkcs#1 v1.5
x9.42 dh keys
dh parameters
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7.2
Confidence
Low
EPSS
0.005
Percentile
77.2%
[1:1.1.1k-12]
- Backport implicit rejection mechanism for RSA PKCS#1 v1.5 to RHEL-8 series
(a proper fix for CVE-2020-25659)
Resolves: RHEL-17696
[1:1.1.1k-11] - Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking
excessively long X9.42 DH keys or parameters may be very slow
Resolves: RHEL-16538
[1:1.1.1k-10] - Fix CVE-2023-3446: Excessive time spent checking DH keys and parameters
Resolves: RHEL-14245 - Fix CVE-2023-3817: Excessive time spent checking DH q parameter value
Resolves: RHEL-14239
Related
nessus
nessus
EulerOS 2.0 SP5 : openssl (EulerOS-SA-2024-1155)
2024-02-08 00:00:00
RHEL 8 : openssl (RHSA-2024:0208)
2024-01-11 00:00:00
EulerOS Virtualization 3.0.6.6 : openssl (EulerOS-SA-2024-1660)
2024-05-17 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-1660)
2024-05-16 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1164)
2024-02-09 00:00:00
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-1155)
2024-02-09 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2024:0208) Low: openssl security update
2024-01-11 21:04:17
(RHSA-2024:0154) Low: openssl security update
2024-01-10 16:25:10
(RHSA-2023:7877) Low: openssl security update
2023-12-18 07:10:45
almalinux
almalinux
Low: openssl security update
2023-12-19 00:00:00
oraclelinux
oraclelinux
openssl security update
2023-12-18 00:00:00
osv
osv
Low: openssl security update
2023-12-19 00:00:00
openssl1.0 vulnerabilities
2024-03-21 16:53:43
CVE-2023-3817
2023-07-31 16:15:10
ubuntu
ubuntu
OpenSSL vulnerabilities
2024-03-21 00:00:00
OpenSSL vulnerabilities
2023-10-25 00:00:00
OpenSSL vulnerabilities
2023-10-18 00:00:00
prion
prion
Design/Logic Flaw
2023-11-06 16:15:00
Design/Logic Flaw
2023-07-31 16:15:00
f5
f5
K000138242 : OpenSSL vulnerability CVE-2023-5678
2024-01-17 00:00:00
K000137969 : OpenSSL vulnerability CVE-2023-3817
2023-12-19 00:00:00
amazon
amazon
Medium: openssl11
2023-11-29 22:19:00
Medium: openssl
2023-11-29 23:18:00
Medium: openssl
2023-11-29 22:19:00
ubuntucve
ubuntucve
CVE-2023-3817
2023-07-31 00:00:00
CVE-2023-5678
2023-11-06 00:00:00
alpinelinux
alpinelinux
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
cvelist
cvelist
broadcom
broadcom
Excessive time spent checking DH q parameter value (CVE-2023-3817)
2024-04-16 00:00:00
debiancve
debiancve
CVE-2023-3817
2023-07-31 16:15:10
CVE-2023-5678
2023-11-06 16:15:42
nvd
nvd
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
openssl
openssl
redos
redos
ROS-20230907-04
2023-09-07 00:00:00
debian
debian
[SECURITY] [DLA 3530-1] openssl security update
2023-08-16 05:56:34
cve
cve
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
slackware
slackware
[slackware-security] openssl
2023-08-02 17:08:29
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7.2
Confidence
Low
EPSS
0.005
Percentile
77.2%
Related for ELSA-2024-12056