Source |
Vuln AWS |
Identifiant |
8296123 |
Date de publication |
2022-03-18 03:45:06 (vue: 2022-12-30 21:12:45) |
Titre |
CVE-2022-0778 awareness |
Texte |
Initial Publication Date: 2022/03/17 20:42 PST
AWS is aware of an issue present in OpenSSL versions 1.0.2, 1.1.1, and 3.0 in which a certificate containing invalid explicit curve parameters can cause denial of service (DoS) by triggering an infinite logic loop. This issue was eliminated in the releases of OpenSSL 1.0.2zd, 1.1.1n, and 3.0.2. AWS is aware of this issue and is actively investigating for impact to AWS services. |
Envoyé |
Oui |
Condensat |
0778 2022 2022/03/17 20:42 2zd actively and aware awareness aws can cause certificate containing curve cve date: denial dos eliminated explicit for impact infinite initial invalid investigating issue logic loop openssl parameters present pst publication releases service services the this triggering versions was which |
Tags |
|
Stories |
|
Notes |
★★
|
Move |
|