Back to bug 2227852

Who When What Removed Added
Zack Miele 2023-07-31 17:52:29 UTC Blocks 2227853
Zack Miele 2023-07-31 17:56:15 UTC Depends On 2227855, 2227858, 2227856, 2227857, 2227863, 2227864, 2227860, 2227866, 2227859, 2227862, 2227865, 2227861
Sandipan Roy 2023-08-01 07:57:59 UTC Summary TRIAGE-CVE-2023-3817 OpenSSL: Excessive time spent checking DH q parameter value CVE-2023-3817 OpenSSL: Excessive time spent checking DH q parameter value
Sandipan Roy 2023-08-01 07:58:35 UTC Summary CVE-2023-3817 OpenSSL: Excessive time spent checking DH q parameter value OpenSSL: Excessive time spent checking DH q parameter value
Sandipan Roy 2023-08-01 08:01:11 UTC Doc Text A vulnerability was found in OpenSSL. This security issue occurs because the Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service.
Alias TRIAGE-CVE-2023-3817 CVE-2023-3817
Summary OpenSSL: Excessive time spent checking DH q parameter value CVE-2023-3817 OpenSSL: Excessive time spent checking DH q parameter value
Sandipan Roy 2023-08-01 08:40:44 UTC Depends On 2228049, 2228050, 2228051
RaTasha Tillery-Smith 2023-08-01 12:09:50 UTC Doc Text A vulnerability was found in OpenSSL. This security issue occurs because the Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. A vulnerability was found in OpenSSL. This security issue occurs because the applications that use the DH_check(), DH_check_ex(), or EVP_PKEY_param_check() functions to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source may lead to a denial of service.
Jakub Jelen 2023-08-01 14:10:56 UTC Flags needinfo?(zmiele)
Zack Miele 2023-08-01 15:03:17 UTC Flags needinfo?(zmiele) needinfo?(saroy)
CC saroy
Sandipan Roy 2023-08-01 15:11:00 UTC Flags needinfo?(saroy)
Sandipan Roy 2023-08-01 15:20:55 UTC Comment 6 updated
Sandipan Roy 2023-08-08 03:27:07 UTC CC hhorak, jorton

Back to bug 2227852