The maintainers of OpenSSL haveshipped patchesto resolve a high-severity security flaw in its software library that could lead to a denial-of-service (DoS) condition when parsing certificates. Tracked asCVE-2022-0778(CVSS score: 7.5), the issue stems from parsing a malformed certificate with invalid explicitelliptic-curveparameters, resulting in what’s called an “infinite loop.” The flaw