Lucene search
Veracode Vulnerability DatabaseVERACODE:39210HistoryFeb 10, 2023 - 9:36 p.m.
Denial Of Service (DoS)
2023-02-1021:36:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
openssl
vulnerability
evp_pkey_public_check
dos
dsa
application crash
0.001 Low
EPSS
Percentile
47.4%
openssl is vulenerable to denial of service (DoS). The vulnerability exists in EVP_PKEY_public_check() function because it can be triggered on read when an application tries to check a malformed DSA public key which will allow an attacker to lead an application crash.
References
git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=23985bac83fd50c8e29431009302b5442f985096
secdb.alpinelinux.org/edge/main.yaml
secdb.alpinelinux.org/v3.15/main.yaml
secdb.alpinelinux.org/v3.16/main.yaml
secdb.alpinelinux.org/v3.17/main.yaml
security.gentoo.org/glsa/202402-08
www.openssl.org/news/secadv/20230207.txt
Related
redhatcve
redhatcve
CVE-2023-0217
2023-02-07 17:30:44
osv
osv
openssl-src subject to NULL dereference validating DSA public key
2023-02-08 22:22:12
CVE-2023-0217
2023-02-08 20:15:24
`NULL` dereference validating DSA public key
2023-02-07 12:00:00
rustsec
rustsec
`NULL` dereference validating DSA public key
2023-02-07 12:00:00
alpinelinux
alpinelinux
CVE-2023-0217
2023-02-08 20:15:24
wolfi
wolfi
CVE-2023-0217 vulnerabilities
2024-07-05 09:08:40
nessus
nessus
Siemens SCALANCE OpenSSL NULL Pointer Dereference (CVE-2023-0217)
2024-01-11 00:00:00
Tenable SecurityCenter 6.0.0 Multiple Vulnerabilities (TNS-2023-07)
2023-03-06 00:00:00
github
github
openssl-src subject to NULL dereference validating DSA public key
2023-02-08 22:22:12
openssl
openssl
Vulnerability in OpenSSL CVE-2023-0217
2023-02-07 00:00:00
prion
prion
Null pointer dereference
2023-02-08 20:15:00
cvelist
cvelist
CVE-2023-0217 NULL dereference validating DSA public key
2023-02-08 19:02:48
cve
cve
CVE-2023-0217
2023-02-08 20:15:24
nvd
nvd
CVE-2023-0217
2023-02-08 20:15:24
ubuntucve
ubuntucve
CVE-2023-0217
2023-02-07 00:00:00
cgr
cgr
CVE-2023-0217 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2023-0217
2023-02-08 20:15:24
openvas
openvas
OpenSSL 3.0 < 3.0.8 Multiple Vulnerabilities - Linux
2023-02-08 00:00:00
OpenSSL 3.0 < 3.0.8 Multiple Vulnerabilities - Windows
2023-02-08 00:00:00
Tenable Nessus 10.2.1 <= 10.4.2 Multiple Vulnerabilities (TNS-2023-11)
2023-05-17 00:00:00
f5
f5
ibm
ibm
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2023-02-07 00:00:00
cloudfoundry
cloudfoundry
USN-5844-1: OpenSSL vulnerabilities | Cloud Foundry
2023-02-24 00:00:00
oraclelinux
oraclelinux
openssl security and bug fix update
2023-02-28 00:00:00
openssl security update
2023-03-01 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2023-02-07 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: openssl-3.0.8-1.fc36
2023-02-22 11:09:09
[SECURITY] Fedora 37 Update: openssl-3.0.8-1.fc37
2023-02-11 00:33:44
rocky
rocky
openssl security and bug fix update
2023-03-29 16:47:51
redhat
redhat
(RHSA-2023:1199) Important: openssl security and bug fix update
2023-03-14 13:18:56
(RHSA-2023:0946) Important: openssl security and bug fix update
2023-02-28 07:52:54
almalinux
almalinux
Moderate: openssl security and bug fix update
2023-02-28 00:00:00
thn
thn
OpenSSL Fixes Multiple New Security Flaws with Latest Update
2023-02-09 09:51:00
aix
aix
Multiple vulnerabilities in OpenSSL affect AIX
2023-03-21 13:26:15
mageia
mageia
Updated openssl packages fix security vulnerability
2023-04-11 22:02:20
gentoo
gentoo
OpenSSL: Multiple Vulnerabilities
2024-02-04 00:00:00
ics
ics
Siemens SCALANCE Family Products
2023-11-16 12:00:00
Siemens SINEC NMS
2024-02-15 12:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0330
2023-02-09 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0415
2023-06-22 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00