Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
OpenSSL: Excessive Certificate Verification Can Cause Slowdowns
DEBIAN-CVE-2026-32280
Summary
A bug in OpenSSL's certificate verification process can cause it to take a long time to verify certificates when dealing with many intermediate certificates. This can cause slowdowns and potentially impact system performance. Update OpenSSL to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | golang-1.15 | All versions | – |
| debian | golang-1.19 | All versions | – |
| debian | golang-1.24 | All versions | – |
| debian | golang-1.24 | All versions | – |
| debian | golang-1.25 | All versions | – |
| debian | golang-1.26 | All versions | – |
Original title
During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denia...
Original description
During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.
- https://security-tracker.debian.org/tracker/CVE-2026-32280 Vendor Advisory
Published: 8 Apr 2026 · Updated: 8 Apr 2026 · First seen: 8 Apr 2026