ELA-966-1 openssl1.0 security update
Package : openssl1.0
Version : 1.0.2u-1~deb9u9 (stretch)
Related CVEs :
CVE-2023-3446
CVE-2023-3817
Two issues have been discovered in openssl, a Secure Sockets Layer toolkit.
Excessively long DH key or parameter checks can cause significant delays
in applications using DH_check(), DH_check_ex(), or EVP_PKEY_param_check()
functions, potentially leading to Denial of Service attacks when keys or
parameters are obtained from untrusted sources.
An openssl1.0 security update has been released for Debian GNU/Linux 9 Extended LTS to address two issues.