Source: openssl Version: 3.1.4-2 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org> Control: found -1 3.0.11-1~deb12u2
Hi, The following vulnerability was published for openssl. CVE-2023-6237[0]: | Checking excessively long invalid RSA public keys may take a long | time If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2023-6237 https://www.cve.org/CVERecord?id=CVE-2023-6237 [1] https://www.openssl.org/news/secadv/20240115.txt Regards, Salvatore
