USN-6709-1: OpenSSL vulnerabilities

It was discovered that checking excessively long DH keys or parameters
may be very slow. A remote attacker could possibly use this issue to
cause OpenSSL to consume resources, resulting in a denial of service.
(CVE-2023-3446)

After the fix for CVE-2023-3446 Bernd Edlinger discovered that a large
q parameter value can also trigger an overly long computation during
some of these checks. A remote attacker could possibly use this issue
to cause OpenSSL to consume resources, resulting in a denial …

attacker can computation cve denial of service fix issue keys large may openssl openssl vulnerabilities parameter resources service slow trigger usn value vulnerabilities