FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

OpenSSL -- key agreement vulnerability

Affected packages
openssl35 < 3.5.5_1
openssl36 < 3.6.1_1

Details

VuXML ID ee1e6a24-1eeb-11f1-81da-8447094a420f
Discovery 2026-03-13
Entry 2026-03-13

The OpenSSL project reports:

TLS 1.3 server may choose unexpected key agreement group (Low)

An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration includes the default by using the "DEFAULT" keyword.

[source]

References

CVE Name CVE-2026-2673
URL https://openssl-library.org/news/secadv/20260313.txt

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.