CVE-2023-35784

Published: Jun 16, 2023

Modified: Dec 17, 2024

PUBLISHED

Description

A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before errata 004, and in LibreSSL before 3.6.3 and 3.7.x before 3.7.3. NOTE: OpenSSL is not affected.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://ftp.openbsd.org/pub/OpenBSD/patches/7.3/common/004_ssl.patch.sig

https://ftp.openbsd.org/pub/OpenBSD/patches/7.2/common/026_ssl.patch.sig

https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.6.3-relnotes.txt

https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.7.3-relnotes.txt

https://github.com/libressl/openbsd/commit/e42d8f4b21a8a498e2eabbffe4c7b7d4ef7cec54

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-35784

Description

Affected Products

References