David Benjamin discovered that OpenSSL incorrectly handled X.400 address processing. A remote attacker could possibly use this issue to read arbitrary memory contents or cause OpenSSL to crash, resulting in a denial of service. (CVE-2023-0286)
Octavio Galland and Marcel Böhme discovered that OpenSSL incorrectly handled streaming ASN.1 data. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2023-0215)
{ "availability": "No subscription required", "binaries": [ { "libssl1.0.0-dbgsym": "1.0.2n-1ubuntu5.11", "libssl1.0-dev": "1.0.2n-1ubuntu5.11", "openssl1.0": "1.0.2n-1ubuntu5.11", "openssl1.0-dbgsym": "1.0.2n-1ubuntu5.11", "libssl1.0.0-udeb": "1.0.2n-1ubuntu5.11", "libssl1.0.0": "1.0.2n-1ubuntu5.11", "libcrypto1.0.0-udeb": "1.0.2n-1ubuntu5.11" } ] }