CVE-2023-3446 - Excessively Long DH Keys May Lead to Denial of Service Attacks
CVE-2023-3446 addresses a vulnerability in OpenSSL where applications that check Diffie-Hellman (DH) keys or parameters using the functions DH_check(), DH_check_ex(), or EVP_
CVE-2023-2650 - Potential Denial of Service Attack Exploiting Specially Crafted ASN.1 Object Identifiers in OpenSSL
A vulnerability has been discovered in OpenSSL, which could cause applications to experience significant delays and potentially lead to a Denial of Service (DoS) attack.
CVE-2023-1255 - AES-XTS Cipher Decryption Implementation Bug on 64-bit ARM Platform
In this post, we will be discussing the CVE-2023-1255 vulnerability that affects the Advanced Encryption Standard (AES) XTS mode cipher decryption implementation on 64-bit ARM
CVE-2023-0465: A Non-default Certificate Verification Issue Paving the Way for Malicious Attacks
A security vulnerability, known as CVE-2023-0465, has been discovered in OpenSSL, a widely-used software library that provides cryptographic functionalities for securing communication over networks. This
CVE-2023-0466 - Potential OpenSSL Vulnerability with X509_VERIFY_PARAM_add_policy() Function
A potential vulnerability has been identified in the OpenSSL cryptographic library, specifically in the X509_VERIFY_PARAM_add_policy() function. This vulnerability could allow certificates
Episode
00:00:00
00:00:00