CVE-2006-2940

Priority
Description
OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions
allows attackers to cause a denial of service (CPU consumption) via
parasitic public keys with large (1) "public exponent" or (2) "public
modulus" values in X.509 certificates that require extra time to process
when using RSA signature verification.
Notes
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2020-09-09 23:54:10 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)