CVE-2023-0466

Name of the Vulnerable Software and Affected Versions OpenSSL (affected versions not specified)

Description The function X509 VERIFY PARAM add0 policy() is documented to implicitly enable the certificate policy check when doing certificate verification. However, the implementation of the function does not enable the check, which allows certificates with invalid or incorrect policies to pass the certificate verification. This could potentially allow a remote attacker to execute a "man-in-the-middle" attack. Certificate policy checks are disabled by default in OpenSSL and are not commonly used by applications.

Recommendations To resolve the issue, applications that require OpenSSL to perform certificate policy checks need to use X509 VERIFY PARAM set1 policies() or explicitly enable the policy check by calling X509 VERIFY PARAM set flags() with the X509 V FLAG POLICY CHECK flag argument. As a temporary workaround, consider disabling the use of the X509 VERIFY PARAM add0 policy() function until a patch is available. Restrict access to the vulnerable X509 VERIFY PARAM add0 policy() function to minimize the risk of exploitation.