Bug 1288955 (CVE-2015-1794) - CVE-2015-1794 OpenSSL: Anon DH ServerKeyExchange with 0 p parameter
Summary: CVE-2015-1794 OpenSSL: Anon DH ServerKeyExchange with 0 p parameter
Alias: CVE-2015-1794
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Depends On:
Blocks: 1288329
TreeView+ depends on / blocked
Reported: 2015-12-07 06:09 UTC by Huzaifa S. Sidhpurwala
Modified: 2021-02-17 04:38 UTC (History)
23 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2015-12-07 06:12:27 UTC

Attachments (Terms of Use)

Description Huzaifa S. Sidhpurwala 2015-12-07 06:09:08 UTC
The following was reported by OpenSSL upstream:

If a client receives a ServerKeyExchange for an anonymous DH ciphersuite with the value of p set to 0 then a seg fault can occur leading to a possible denial of service attack.

This issue affects OpenSSL version 1.0.2.

OpenSSL 1.0.2 users should upgrade to 1.0.2e

This issue was reported to OpenSSL on August 3 2015 by Guy Leaver (Cisco). The fix was developed by Matt Caswell of the OpenSSL development team.

Comment 1 Huzaifa S. Sidhpurwala 2015-12-07 06:12:27 UTC

This issue does not affect the version of OpenSSL as shipped with Red Hat Enterprise Linux 5, 6 and 7.

Note You need to log in before you can comment on or make changes to this bug.