CVE-2016-0701

Priority
Description
The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2
before 1.0.2f does not ensure that prime numbers are appropriate for
Diffie-Hellman (DH) key exchange, which makes it easier for remote
attackers to discover a private DH exponent by making multiple handshakes
with a peer that chose an inappropriate number, as demonstrated by a number
in an X9.42 file.
Assigned-to
mdeslaur
Notes
mdeslaur1.0.2 only
Package
Upstream:not-affected
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):DNE
More Information

Updated: 2020-01-29 19:53:54 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)