Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2017-3735 - log back

CVE-2017-3735 created at 25 Sep 2019 19:31:40

Severity

+

Low

Remote

+

Remote

Type

+	Denial of service

Description

+	A security issue has been found in OpenSSL < 1.1.0g. If an X.509 certificate has a malformed IPAddressFamily extension, OpenSSL could do a one-byte buffer overread. The most likely result would be an erroneous display of the certificate in text format.

References

+	https://www.openssl.org/news/vulnerabilities.html#2017-3735
+	https://www.openssl.org/news/secadv/20170828.txt
+	https://github.com/openssl/openssl/commit/b23171744b01e473ebbfd6edad70c1c3825ffbcd

Notes