SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (VPN)  >   OpenSSL Vendors:   OpenSSL.org
OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
SecurityTracker Alert ID:  1036885
SecurityTracker URL:  http://securitytracker.com/id/1036885
CVE Reference:   CVE-2016-6302, CVE-2016-6303, CVE-2016-6306, CVE-2016-6307, CVE-2016-6308, CVE-2016-6309, CVE-2016-7052   (Links to External Site)
Updated:  Sep 26 2016
Original Entry Date:  Sep 23 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   Multiple vulnerabilities were reported in OpenSSL. A remote user can cause the target service or application to crash.

A remote user can send a specially crafted SHA512 TLS session ticket to trigger an out-of-bounds memory read error and cause the target server to crash [CVE-2016-6302].

A remote user can trigger an integer overflow in the MDC2_Update() function in 'crypto/mdc2/mdc2dgst.c' and cause the target service to crash in certain cases [CVE-2016-6303].

A remote user can trigger an out-of-bounds memory read error in the processing of certain TLS/SSL protocol handshake messages and cause the target application or service to crash [CVE-2016-6306]. Version 1.1.0 is not affected.

A remote user can trigger a memory allocation error in tls_get_message_header() to temporarily consume excessive memory resources on the target system [CVE-2016-6307]. DTLS users are not affected. Version 1.1.0 is affected.

A remote user can trigger a memory allocation error in dtls1_preprocess_fragment() to temporarily consume excessive memory resources on the target system [CVE-2016-6308]. TLS users are not affected. Version 1.1.0 is affected.

Shi Lei (Gear Team, Qihoo 360 Inc.) reported these vulnerabilities.
Impact:   A remote user can cause the target service or application to crash.
Solution:   The vendor has issued a fix (1.0.1u, 1.0.2i, 1.1.0a).

[Editor's note: On September 26, 2016, the vendor reported that two of the fixed versions contain vulnerabilities. Version 1.1.0a is affected by a use-after-free memory error (CVE-2016-6309), reported by Robert Swiecki (Google Security Team). Version 1.0.2i is affected by a CRL processing null pointer exception (CVE-2016-7052), reported by Bruce Stephens and Thomas Jakobi. The revised fixes are versions 1.1.0b and 1.0.2j.]

The vendor advisories are available at:

https://www.openssl.org/news/secadv/20160922.txt
https://www.openssl.org/news/secadv/20160926.txt
Vendor URL:  www.openssl.org/news/secadv/20160922.txt (Links to External Site)
Cause:   Access control error, Boundary error, Resource error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Sep 23 2016 (FreeBSD Issues Fix) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
FreeBSD has issued a fix for FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0.
Sep 29 2016 (Cisco Issues Advisory for Cisco IP Phones) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Cisco has issued an advisory for Cisco IP Phones.
Sep 29 2016 (Cisco Issues Advisory for Cisco Content Security Management Appliance Update Servers) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Cisco has issued an advisory for Cisco Content Security Management Appliance Update Servers.
Sep 29 2016 (Cisco Issues Advisory for Cisco Secure Access Control System) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Cisco has issued an advisory for Cisco Secure Access Control System.
Sep 29 2016 (Cisco Issues Advisory for Cisco FireSIGHT) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Cisco has issued an advisory for Cisco FireSIGHT.
Sep 30 2016 (CentOS Issues Fix) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
CentOS has issued a fix for CentOS 6.
Oct 6 2016 (Cisco Issues Fix for Cisco Prime Collaboration) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Cisco has issued a fix for Cisco Prime Collaboration.
Oct 10 2016 (FreeBSD Issues Fix) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
FreeBSD has issued a fix for FreeBSD 11.0.
Oct 17 2016 (Oracle Issues Fix for Oracle Linux) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Oracle has issued a fix for Oracle Linux 5.
Oct 27 2016 (HPE Issues Advisory for HPE IceWall) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
HPE has issued an advisory for HPE IceWall.
Nov 15 2016 (IBM Issues Fix for IBM AIX) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
IBM has issued a fix for IBM AIX 5.3, 6.1, 7.1, and 7.2.
Jan 10 2017 (IBM Issues Fix for IBM Cognos Business Intelligence Server) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
IBM has issued a fix for IBM Cognos Business Intelligence Server.
Mar 1 2017 (Pulse Secure Issues Fix for Pulse Connect Secure) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Pulse Secure has issued a fix for Pulse Connect Secure.
Mar 22 2017 (IBM Issues Fix for IBM Rational ClearQuest) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
IBM has issued a fix for IBM Rational ClearQuest.
Apr 8 2017 (IBM Issues Fix for IBM WebSphere MQ) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
IBM has issued a fix for IBM WebSphere MQ on NonStop Server.
Apr 19 2017 (Oracle Issues Fix for Oracle Fusion Middleware) OpenSSL Multiple Bugs Let Remote Users Cause the Target Service to Crash
Oracle has issued a fix for Oracle Fusion Middleware.


 Source Message Contents


[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC