CVE-2024-2511
LowSummary
A vulnerability in the OpenSSL library allows unbounded memory growth when processing TLSv1.3 sessions in certain non-default server configurations. An attacker can exploit this to cause a Denial of Service (DoS).
Risk Assessment
The risk is that an attacker can exhaust server memory, leading to service unavailability for legitimate users.
Recommendation
Immediately update OpenSSL to the patched version and review TLS server configurations to remove non-default settings that may trigger the issue.
Original NVD description (English source)
Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in TLS

