OpenSSL is vulnerable to integer overflows. It exists due to a mishandling of overflow in rsaz_512_sqr
for the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli.
lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html
packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html
git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=419102400a2811582a7a3d4a4e317d72e5ce0a8f
git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=f1c5eea8a817075d31e43f5876993c6710238c98
github.com/openssl/openssl/commit/419102400a2811582a7a3d4a4e317d72e5ce0a8f
github.com/openssl/openssl/commit/8736f9538121443cdb2e21951a85e465b8f7f790
github.com/openssl/openssl/pull/10575
lists.debian.org/debian-lts-announce/2022/03/msg00023.html
lists.fedoraproject.org/archives/list/[email protected]/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/
lists.fedoraproject.org/archives/list/[email protected]/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/
lists.fedoraproject.org/archives/list/[email protected]/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/
seclists.org/bugtraq/2019/Dec/39
seclists.org/bugtraq/2019/Dec/46
security.gentoo.org/glsa/202004-10
security.netapp.com/advisory/ntap-20191210-0001/
usn.ubuntu.com/4376-1/
usn.ubuntu.com/4504-1/
www.debian.org/security/2019/dsa-4594
www.debian.org/security/2021/dsa-4855
www.openssl.org/news/secadv/20191206.txt
www.oracle.com/security-alerts/cpuApr2021.html
www.oracle.com/security-alerts/cpujan2021.html
www.oracle.com/security-alerts/cpujul2020.html
www.tenable.com/security/tns-2019-09
www.tenable.com/security/tns-2020-03
www.tenable.com/security/tns-2020-11
www.tenable.com/security/tns-2021-10