Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2023-2650

DescriptionA flaw was found in OpenSSL resulting in a possible denial of service while translating ASN.1 object identifiers. Applications that use OBJ_obj2txt() directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience long delays when processing messages, which may lead to a denial of service.A flaw was found in OpenSSL resulting in a possible denial of service while translating ASN.1 object identifiers. Applications that use OBJ_obj2txt() directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience long delays when processing messages, which may lead to a denial of service.

Source

Affected Packages and Issued Red Hat Security Errata

Search:

Platform	Package	State
Red Hat Enterprise Linux 8	shim low This rating is given to all other issues that may have a security impact. These are the types of vulnerabilities that are believed to require unlikely circumstances to be able to be exploited, or where a successful exploit would give minimal consequences. This includes flaws that are present in a program’s source code but to which no current or theoretically possible, but unproven, exploitation vectors exist or were found during the technical analysis of the flaw.	Affected
Red Hat Enterprise Linux 9	shim low This rating is given to all other issues that may have a security impact. These are the types of vulnerabilities that are believed to require unlikely circumstances to be able to be exploited, or where a successful exploit would give minimal consequences. This includes flaws that are present in a program’s source code but to which no current or theoretically possible, but unproven, exploitation vectors exist or were found during the technical analysis of the flaw.	Affected
Red Hat Enterprise Linux 7	ovmf	Out of support scope
Red Hat Enterprise Linux 8	openssl low This rating is given to all other issues that may have a security impact. These are the types of vulnerabilities that are believed to require unlikely circumstances to be able to be exploited, or where a successful exploit would give minimal consequences. This includes flaws that are present in a program’s source code but to which no current or theoretically possible, but unproven, exploitation vectors exist or were found during the technical analysis of the flaw.	Affected
Red Hat Enterprise Linux 6	openssl	Out of support scope
Red Hat Enterprise Linux 7	openssl	Out of support scope
Red Hat Enterprise Linux 9	openssl	Affected
Red Hat JBoss Core Services	openssl	Affected
Red Hat JBoss Web Server 3	openssl	Out of support scope
Red Hat JBoss Web Server 5	openssl	Affected

Show entries

First Previous1 2Next Last

Showing 1 to 10 of 14 entries

Unless explicitly stated as not affected, all previous versions of packages in any minor update stream of a product listed here should be assumed vulnerable, although may not have been subject to full analysis.

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Affected Packages and Issued Red Hat Security Errata

low Impact

low Impact

low Impact

Vulmon Search

About

Products

Connect