USN-6435-2: OpenSSL vulnerabilities

Ubuntu Security Advisory

USN-6435-1 fixed vulnerabilities in OpenSSL. This update
provides the corresponding updates for Ubuntu 20.04 LTS.

Original advisory details:

It was discovered that OpenSSL incorrectly handled excessively large
Diffie-Hellman parameters. An attacker could possibly use this issue
to cause a denial of service. (CVE-2023-3446)

Bernd Edlinger discovered that OpenSSL incorrectly handled excessively
large Diffie-Hellman parameters. An attacker could possibly use this
issue to cause a denial of service. (CVE-2023-3817)

READ MORE