USN-6435-1 fixed vulnerabilities in OpenSSL. This update provides the corresponding updates for Ubuntu 20.04 LTS.
Original advisory details:
It was discovered that OpenSSL incorrectly handled excessively large Diffie-Hellman parameters. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-3446)
Bernd Edlinger discovered that OpenSSL incorrectly handled excessively large Diffie-Hellman parameters. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-3817)
{ "availability": "No subscription required", "binaries": [ { "libssl-doc": "1.1.1f-1ubuntu2.20", "libssl-dev": "1.1.1f-1ubuntu2.20", "libssl1.1-dbgsym": "1.1.1f-1ubuntu2.20", "libssl1.1-udeb": "1.1.1f-1ubuntu2.20", "libssl1.1": "1.1.1f-1ubuntu2.20", "openssl-dbgsym": "1.1.1f-1ubuntu2.20", "libcrypto1.1-udeb": "1.1.1f-1ubuntu2.20", "openssl": "1.1.1f-1ubuntu2.20" } ] }