A vulnerability was found in OpenSSL up to 3.3.2 and classified as critical. Affected by this issue is the function
EC_GROUP_new_curve_GF2m
of the component Elliptic Curve API. The manipulation leads to out-of-bounds write.
This vulnerability is handled as CVE-2024-9143. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.