FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

OpenSSL -- Excessive Resource Usage Verifying X.509 Policy Constraints

Affected packages
openssl < 1.1.1t,1_1
openssl30 < 3.0.8_1
openssl31 < 3.1.0_1
openssl-quic < 3.0.8_1


VuXML ID 1ba034fb-ca38-11ed-b242-d4c9ef517024
Discovery 2023-03-23
Entry 2023-03-24
Modified 2023-03-24

The OpenSSL project reports:

Severity: Low

A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.


CVE Name CVE-2023-0464