Advisory: CLSA-2023:1693419428
OS: Ubuntu 16.04 ELS
Public date: 2023-08-30 14:17:11
Project: openssl
Version: 1.0.2g-1ubuntu4.21+tuxcare.els8
Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2023-1693419428.html
* SECURITY UPDATE: Checking excessively long DH keys or parameters may be very slow. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. - debian/patches/CVE-2023-3817.patch: Add a prior check and process only a correct DH keys - CVE-2023-3817
Update command: apt-get update apt-get --only-upgrade install openssl*
libssl-dev_1.0.2g-1ubuntu4.21+tuxcare.els8_amd64.deb libssl-doc_1.0.2g-1ubuntu4.21+tuxcare.els8_all.deb libssl1.0.0_1.0.2g-1ubuntu4.21+tuxcare.els8_amd64.deb openssl_1.0.2g-1ubuntu4.21+tuxcare.els8_amd64.deb