Bug 736079 (CVE-2011-3210) - CVE-2011-3210 openssl: TLS ephemeral ECDH crashes in OpenSSL
Summary: CVE-2011-3210 openssl: TLS ephemeral ECDH crashes in OpenSSL
Alias: CVE-2011-3210
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Depends On:
TreeView+ depends on / blocked
Reported: 2011-09-06 15:44 UTC by Vincent Danen
Modified: 2021-02-24 14:47 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2011-09-09 10:28:20 UTC

Attachments (Terms of Use)

Description Vincent Danen 2011-09-06 15:44:39 UTC
From the upstream advisory [1]:

OpenSSL server code for ephemeral ECDH ciphersuites is not thread-safe, and
furthermore can crash if a client violates the protocol by sending handshake
messages in incorrect order. (CVE-2011-3210)

This issue applies to OpenSSL 0.9.8 through 0.9.8s (experimental "ECCdraft"
ciphersuites) and to OpenSSL 1.0.0 through 1.0.0d.

Affected users of OpenSSL should update to the OpenSSL 1.0.0e release, which
contains a patch to correct this issue. If you cannot immediately upgrade,
we recommend that you disable ephemeral ECDH ciphersuites if you have enabled

Thanks to Adam Langley <agl> for identifying and fixing this

Only server-side applications that specifically support ephemeral ECDH
ciphersuites are affected by the ephemeral ECDH crash bug and only if
ephemeral ECDH ciphersuites are enabled in the configuration. You can check
to see if application supports ephemeral ECDH ciphersuites by looking for
SSL_CTX_set_tmp_ecdh, SSL_set_tmp_ecdh, SSL_CTRL_SET_TMP_ECDH,
SSL_CTX_set_tmp_ecdh_callback, SSL_set_tmp_ecdh_callback,
SSL_CTRL_SET_TMP_ECDH_CB in the source code.

[1] http://www.openssl.org/news/secadv_20110906.txt


Not vulnerable. This issue did not affect the versions of openssl as shipped with Red Hat Enterprise Linux 3, 4, 5, or 6, as they do not include the support for the elliptic curve cryptography.

Comment 1 Tomas Hoger 2011-09-09 10:28:20 UTC
Upstream commit:

Note You need to log in before you can comment on or make changes to this bug.