Bug 1288322 (CVE-2015-3195)
| Summary: | CVE-2015-3195 OpenSSL: X509_ATTRIBUTE memory leak | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Huzaifa S. Sidhpurwala <huzaifas> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | arun, bbaranow, bmaxwell, cdewolf, chazlett, csutherl, dandread, darran.lofthouse, dknox, dosoudil, erik-fedora, gzaronik, huzaifas, jaeshin, jason.greene, jawilson, jboss-set, jclere, jdoyle, ktietz, lgao, marcandre.lureau, mbabacek, mturk, myarboro, pdwyer, pgier, psakar, pslavice, rjones, rnetuka, rsvoboda, santony, sardella, slawomir, slong, tmraz, twalsh, vtunka, weli, yozone |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| See Also: | https://issues.redhat.com/browse/JBCS-48 | ||
| Whiteboard: | |||
| Fixed In Version: | openssl 0.9.8zh, openssl 1.0.0t, openssl 1.0.1q, openssl 1.0.2e | Doc Type: | Bug Fix |
| Doc Text: |
A memory leak vulnerability was found in the way OpenSSL parsed PKCS#7 and CMS data. A remote attacker could use this flaw to cause an application that parses PKCS#7 or CMS data from untrusted sources to use an excessive amount of memory and possibly crash.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2019-06-08 02:46:06 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1288339, 1288340, 1288341, 1288342, 1288343, 1290334, 1291574, 1291575, 1291576 | ||
| Bug Blocks: | 1288329, 1298491, 1395463 | ||
|
Description
Huzaifa S. Sidhpurwala
2015-12-04 04:07:47 UTC
External References: https://openssl.org/news/secadv/20151203.txt Upstream commits: OpenSSL 1.0.2: https://git.openssl.org/?p=openssl.git;a=commit;h=cc598f321fbac9c04da5766243ed55d55948637d OpenSSL 1.0.1: https://git.openssl.org/?p=openssl.git;a=commit;h=b29ffa392e839d05171206523e84909146f7a77c OpenSSL 1.0.0: https://git.openssl.org/?p=openssl.git;a=commit;h=cf432b3b1bd7caa22943b41b94ec2472ae497dc6 OpenSSL 0.9.8: https://git.openssl.org/?p=openssl.git;a=commit;h=2cdafc51f008e65b2d5263a80ad0e89e9b56c8d3 openssl-1.0.2e-1.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report. Created mingw-openssl tracking bugs for this issue: Affects: fedora-all [bug 1290334] This issue has been addressed in the following products: Red Hat Enterprise Linux 5 Via RHSA-2015:2616 https://rhn.redhat.com/errata/RHSA-2015-2616.html This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Red Hat Enterprise Linux 6 Via RHSA-2015:2617 https://rhn.redhat.com/errata/RHSA-2015-2617.html openssl-1.0.1k-13.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report. openssl101e-1.0.1e-5.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report. After upgrading the openssl to openssl-devel-0.9.8e-37.el5_11 on Redhat5, we get the following error. Does this upgrade disabled some ciphers? openssl s_client -connect domain:443 CONNECTED(00000003) 6052:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:591: In comparison to openssl-36.el5_11 there was no change apart from the fix for CVE-2015-3195 which does not touch SSL/TLS code at all. interesting, but it just works when I downgrade the openssl to 36.el5.11. $ openssl s_client -connect domain:443 CONNECTED(00000003) -- snip -- SSL handshake has read 3313 bytes and written 319 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 2048 bit Secure Renegotiation IS supported --- I have to direct you to regular support channels for further investigation. This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 6.4.10 Via RHSA-2016:2056 https://rhn.redhat.com/errata/RHSA-2016-2056.html This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7 Via RHSA-2016:2054 https://rhn.redhat.com/errata/RHSA-2016-2054.html This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6 Via RHSA-2016:2055 https://rhn.redhat.com/errata/RHSA-2016-2055.html This issue has been addressed in the following products: Via RHSA-2016:2957 https://rhn.redhat.com/errata/RHSA-2016-2957.html |