Back to bug 1310599
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Huzaifa S. Sidhpurwala | 2016-02-22 10:34:34 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-02-22 10:34:34 UTC | Doc Type | --- | Bug Fix |
| Huzaifa S. Sidhpurwala | 2016-02-22 10:34:39 UTC | Blocks | 1301847 | |
| Hubert Kario | 2016-02-22 16:53:34 UTC | CC | hkario | |
| Huzaifa S. Sidhpurwala | 2016-02-26 07:50:31 UTC | Depends On | 1301849 | |
| Huzaifa S. Sidhpurwala | 2016-02-26 07:51:07 UTC | Depends On | 1301851 | |
| Huzaifa S. Sidhpurwala | 2016-02-29 07:16:32 UTC | Whiteboard | impact=low,public=no,reported=20160222,source=internet,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=new,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected | impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new |
| Huzaifa S. Sidhpurwala | 2016-02-29 08:26:02 UTC | Doc Text | A side-channel attack was found which makes use of cache-bank conflicts on the Intel Sandy-Bridge microarchitecture. An attacker who has the ability to control code in a thread running on the same hyper-threaded core as the user thread which is performing decryption, could use this flaw to recover RSA private keys. | |
| Martin Prpič | 2016-02-29 13:21:06 UTC | Doc Text | A side-channel attack was found which makes use of cache-bank conflicts on the Intel Sandy-Bridge microarchitecture. An attacker who has the ability to control code in a thread running on the same hyper-threaded core as the user thread which is performing decryption, could use this flaw to recover RSA private keys. | A side-channel attack was found that makes use of cache-bank conflicts on the Intel Sandy-Bridge microarchitecture. An attacker who has the ability to control code in a thread running on the same hyper-threaded core as the victim's thread that is performing decryption, could use this flaw to recover RSA private keys. |
| Huzaifa S. Sidhpurwala | 2016-03-01 09:05:14 UTC | Whiteboard | impact=low,public=no,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new |
| Huzaifa S. Sidhpurwala | 2016-03-01 14:13:34 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2016-0702 OpenSSL: Side channel attack on modular exponentiation | CVE-2016-0702 OpenSSL: Side channel attack on modular exponentiation | ||
| Norman Sardella | 2016-03-01 15:30:25 UTC | CC | sardella | |
| Kurt Seifried | 2016-03-01 20:14:19 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=new,jbews-2/openssl=new,jbews-3/openssl=new | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new |
| Kurt Seifried | 2016-03-01 20:16:44 UTC | Depends On | 1313535 | |
| Tomas Hoger | 2016-03-01 22:55:37 UTC | Fixed In Version | openssl 1.0.1s, openssl 1.0.2g | |
| Kurt Seifried | 2016-03-02 01:10:53 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected |
| Kurt Seifried | 2016-03-02 01:10:58 UTC | CC | fdeutsch, jgregusk | |
| Kurt Seifried | 2016-03-02 01:18:36 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected |
| Kurt Seifried | 2016-03-02 01:26:42 UTC | Depends On | 1313595 | |
| Kurt Seifried | 2016-03-02 01:28:24 UTC | Depends On | 1313598 | |
| Huzaifa S. Sidhpurwala | 2016-03-02 05:10:15 UTC | Depends On | 1301850 | |
| Huzaifa S. Sidhpurwala | 2016-03-02 05:10:22 UTC | Depends On | 1301852 | |
| Slawomir Czarko | 2016-03-02 07:46:09 UTC | CC | slawomir | |
| Yasuhiro Ozone | 2016-03-14 08:31:36 UTC | CC | yozone | |
| Timothy Walsh | 2016-04-29 12:42:55 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=new,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected |
| Timothy Walsh | 2016-04-29 12:45:21 UTC | Depends On | 1331752 | |
| Andrej Nemec | 2016-06-03 14:45:21 UTC | CC | anemec | |
| Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=affected,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=affected,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=wontfix,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected | ||
| Timothy Walsh | 2016-09-06 04:31:38 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=wontfix,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,jbews-2/openssl=new,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=wontfix,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,eap-6/openssl=notaffected,jbews-2/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected |
| Timothy Walsh | 2016-09-06 04:31:48 UTC | CC | bbaranow, bmaxwell, cdewolf, csutherl, dandread, darran.lofthouse, dosoudil, gzaronik, jawilson, lgao, myarboro, pgier, psakar, pslavice, rnetuka, rsvoboda, twalsh, vtunka | |
| Timothy Walsh | 2017-01-19 06:55:25 UTC | Blocks | 1395463 | |
| PnT Account Manager | 2019-05-02 21:51:00 UTC | CC | anemec | |
| Product Security DevOps Team | 2019-06-08 02:48:27 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:48:27 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:44:17 UTC | Whiteboard | impact=low,public=20160301,reported=20160222,source=upstream,cvss2=2.6/AV:L/AC:H/Au:N/C:P/I:P/A:N,rhel-5/openssl=wontfix,rhel-6/openssl=affected,rhel-7/openssl=affected,fedora-all/openssl=affected,fedora-all/mingw-openssl=affected,rhel-5/openssl097a=wontfix,rhel-6/openssl098e=affected,rhel-7/openssl098e=affected,epel-5/openssl101e=affected,rhev-m-3/rhev-hypervisor=affected,eap-6/openssl=notaffected,jbews-2/openssl=notaffected,jbews-3/openssl=affected,rhel-7.2.z/rhel-guest-image=affected,rhel-6.7.z/guest-images=affected |
Back to bug 1310599