CVE-2018-0732

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.0.2 through 1.0.2o OpenSSL versions 1.1.0 through 1.1.0h

Description The issue is related to errors in cryptographic key processing when using the DH(E) protocol, which can be exploited by a remote attacker to cause a denial of service. During a TLS handshake using a DH(E) based ciphersuite, a malicious server can send a very large prime value to the client, causing the client to spend an unreasonably long period of time generating a key for this prime, resulting in a hang.

Recommendations For OpenSSL versions 1.0.2 through 1.0.2o, update to OpenSSL 1.0.2p-dev or later. For OpenSSL versions 1.1.0 through 1.1.0h, update to OpenSSL 1.1.0i-dev or later.