CVE-2023-0464

CVE-2023-0464

Name

CVE-2023-0464

Description

A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2017771e2db3e2b96f89bbe8766c3209f6a99545
MISC	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=959c59c7a0164117e7f8366466a32bb1f8d77ff1
MISC	https://www.openssl.org/news/secadv/20230322.txt
MISC	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2dcd4f1e3115f38cefa43e3efbe9b801c27e642e
MISC	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=879f7080d7e141f415c79eaa3a8ac4a3dad0348b
MISC	https://www.debian.org/security/2023/dsa-5417
MISC	https://lists.debian.org/debian-lts-announce/2023/06/msg00011.html
	https://www.couchbase.com/alerts/
openssl-security@openssl.org	https://security.gentoo.org/glsa/202402-08
openssl-security@openssl.org	https://security.netapp.com/advisory/ntap-20240621-0006/
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20230406-0006/

Type

URI

MISC

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2017771e2db3e2b96f89bbe8766c3209f6a99545

MISC

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=959c59c7a0164117e7f8366466a32bb1f8d77ff1

MISC

https://www.openssl.org/news/secadv/20230322.txt

MISC

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2dcd4f1e3115f38cefa43e3efbe9b801c27e642e

MISC

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=879f7080d7e141f415c79eaa3a8ac4a3dad0348b

MISC

https://www.debian.org/security/2023/dsa-5417

MISC

https://lists.debian.org/debian-lts-announce/2023/06/msg00011.html

https://www.couchbase.com/alerts/

openssl-security@openssl.org

https://security.gentoo.org/glsa/202402-08

openssl-security@openssl.org

https://security.netapp.com/advisory/ntap-20240621-0006/

af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20230406-0006/

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:openssl:openssl::::::::`	openssl	>= 3.1.0	< 3.1.1
`cpe:2.3:a:openssl:openssl::::::::`	openssl	>= 3.0.0	< 3.0.9
`cpe:2.3:a:openssl:openssl::::::::`	openssl	>= 1.1.1	< 1.1.1u
`cpe:2.3:a:openssl:openssl::::::::`	openssl	>= 1.0.2	< 1.0.2zh

CPE URI

Source package

Min version

Max version

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

openssl

>= 3.1.0

< 3.1.1

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

openssl

>= 3.0.0

< 3.0.9

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

openssl

>= 1.1.1

< 1.1.1u

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

openssl

>= 1.0.2

< 1.0.2zh

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
openssl1.1-compat	edge-community	1.1.1t-r1	Timo Teras <timo.teras@iki.fi>	fixed
openssl1.1-compat	3.18-community	1.1.1t-r1	None	fixed
openssl1.1-compat	3.17-community	1.1.1t-r1	Timo Teras <timo.teras@iki.fi>	fixed
openssl	edge-main	3.1.0-r5	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	edge-main	3.1.0-r4	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	edge-main	3.1.0-r3	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	edge-main	3.1.0-r2	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	edge-main	3.1.0-r1	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	edge-main	3.0.8-r0	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
openssl	edge-main	3.0.7-r2	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
openssl	edge-main	3.0.7-r0	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
openssl	edge-main	3.0.6-r0	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
openssl	edge-main	3.0.5-r0	None	possibly vulnerable
openssl	edge-main	3.0.3-r0	None	possibly vulnerable
openssl	edge-main	3.0.2-r0	None	possibly vulnerable
openssl	edge-main	3.0.1-r0	None	possibly vulnerable
openssl	edge-main	1.1.1q-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
openssl	edge-main	1.1.1o-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
openssl	edge-main	1.1.1n-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
openssl	edge-main	1.1.1l-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
openssl	edge-main	1.1.1k-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
openssl	edge-main	1.1.1j-r0	None	possibly vulnerable
openssl	edge-main	1.1.1i-r0	None	possibly vulnerable
openssl	edge-main	1.1.1g-r0	None	possibly vulnerable
openssl	edge-main	1.1.1d-r3	None	possibly vulnerable
openssl	edge-main	1.1.1d-r1	None	possibly vulnerable
openssl	edge-main	1.1.1b-r1	None	possibly vulnerable
openssl	edge-main	1.1.1a-r0	None	possibly vulnerable
openssl	3.22-main	3.1.0-r4	None	fixed
openssl	3.22-main	3.1.0-r2	None	fixed
openssl	3.22-main	3.1.0-r1	None	fixed
openssl	3.22-main	3.0.8-r0	None	possibly vulnerable
openssl	3.22-main	3.0.7-r2	None	possibly vulnerable
openssl	3.22-main	3.0.7-r0	None	possibly vulnerable
openssl	3.22-main	3.0.6-r0	None	possibly vulnerable
openssl	3.22-main	3.0.5-r0	None	possibly vulnerable
openssl	3.22-main	3.0.3-r0	None	possibly vulnerable
openssl	3.22-main	3.0.2-r0	None	possibly vulnerable
openssl	3.22-main	3.0.1-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1l-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1k-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1j-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1i-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1g-r0	None	possibly vulnerable
openssl	3.22-main	1.1.1d-r3	None	possibly vulnerable
openssl	3.22-main	1.1.1d-r1	None	possibly vulnerable
openssl	3.22-main	1.1.1b-r1	None	possibly vulnerable
openssl	3.22-main	1.1.1a-r0	None	possibly vulnerable
openssl	3.21-main	3.1.0-r4	None	fixed
openssl	3.21-main	3.1.0-r2	None	fixed
openssl	3.21-main	3.1.0-r1	None	fixed
openssl	3.21-main	3.0.8-r0	None	possibly vulnerable
openssl	3.21-main	3.0.7-r2	None	possibly vulnerable
openssl	3.21-main	3.0.7-r0	None	possibly vulnerable
openssl	3.21-main	3.0.6-r0	None	possibly vulnerable
openssl	3.21-main	3.0.5-r0	None	possibly vulnerable
openssl	3.21-main	3.0.3-r0	None	possibly vulnerable
openssl	3.21-main	3.0.2-r0	None	possibly vulnerable
openssl	3.21-main	3.0.1-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1l-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1k-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1j-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1i-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1g-r0	None	possibly vulnerable
openssl	3.21-main	1.1.1d-r3	None	possibly vulnerable
openssl	3.21-main	1.1.1d-r1	None	possibly vulnerable
openssl	3.21-main	1.1.1b-r1	None	possibly vulnerable
openssl	3.21-main	1.1.1a-r0	None	possibly vulnerable
openssl	3.20-main	3.1.0-r4	None	fixed
openssl	3.20-main	3.1.0-r2	None	fixed
openssl	3.20-main	3.1.0-r1	None	fixed
openssl	3.20-main	3.0.8-r0	None	possibly vulnerable
openssl	3.20-main	3.0.7-r2	None	possibly vulnerable
openssl	3.20-main	3.0.7-r0	None	possibly vulnerable
openssl	3.20-main	3.0.6-r0	None	possibly vulnerable
openssl	3.20-main	3.0.5-r0	None	possibly vulnerable
openssl	3.20-main	3.0.3-r0	None	possibly vulnerable
openssl	3.20-main	3.0.2-r0	None	possibly vulnerable
openssl	3.20-main	3.0.1-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1l-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1k-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1j-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1i-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1g-r0	None	possibly vulnerable
openssl	3.20-main	1.1.1d-r3	None	possibly vulnerable
openssl	3.20-main	1.1.1d-r1	None	possibly vulnerable
openssl	3.20-main	1.1.1b-r1	None	possibly vulnerable
openssl	3.20-main	1.1.1a-r0	None	possibly vulnerable
openssl	3.19-main	3.1.0-r4	None	fixed
openssl	3.19-main	3.1.0-r2	None	fixed
openssl	3.19-main	3.1.0-r1	None	fixed
openssl	3.19-main	3.0.8-r0	None	possibly vulnerable
openssl	3.19-main	3.0.7-r2	None	possibly vulnerable
openssl	3.19-main	3.0.7-r0	None	possibly vulnerable
openssl	3.19-main	3.0.6-r0	None	possibly vulnerable
openssl	3.19-main	3.0.5-r0	None	possibly vulnerable
openssl	3.19-main	3.0.3-r0	None	possibly vulnerable
openssl	3.19-main	3.0.2-r0	None	possibly vulnerable
openssl	3.19-main	3.0.1-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1l-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1k-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1j-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1i-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1g-r0	None	possibly vulnerable
openssl	3.19-main	1.1.1d-r3	None	possibly vulnerable
openssl	3.19-main	1.1.1d-r1	None	possibly vulnerable
openssl	3.19-main	1.1.1b-r1	None	possibly vulnerable
openssl	3.19-main	1.1.1a-r0	None	possibly vulnerable
openssl	3.18-main	3.1.0-r4	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	3.18-main	3.1.0-r1	None	fixed
openssl	3.17-main	3.0.8-r4	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	3.17-main	3.0.8-r3	Ariadne Conill <ariadne@dereferenced.org>	fixed
openssl	3.17-main	3.0.8-r1	Ariadne Conill <ariadne@dereferenced.org>	fixed

Source package

Branch

Version

Maintainer

Status

openssl1.1-compat

edge-community

1.1.1t-r1

Timo Teras <timo.teras@iki.fi>

fixed

openssl1.1-compat

3.18-community