Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

fstec логотип

BDU:2024-08864

Опубликовано: 04 фев. 2024
Источник: fstec
CVSS3: 4.9
CVSS2: 6.8
EPSS Низкий

Описание

Уязвимость компонента X509_V_FLAG_CRL_CHECK криптографической библиотеки OpenSSL связана с чтением за границами памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Вендор

Canonical Ltd.
Сообщество свободного программного обеспечения
Red Hat Inc.
OpenSSL Software Foundation

Наименование ПО

Ubuntu
Debian GNU/Linux
Red Hat Enterprise Linux
OpenSSL

Версия ПО

20.04 LTS (Ubuntu)
12 (Debian GNU/Linux)
22.04 LTS (Ubuntu)
9 (Red Hat Enterprise Linux)
22.10 (Ubuntu)
9.0 Extended Update Support (Red Hat Enterprise Linux)
от 3.0 до 3.0.8 (OpenSSL)
18.04 ESM (Ubuntu)

Тип ПО

Операционная система
Программное средство защиты

Операционные системы и аппаратные платформы

Canonical Ltd. Ubuntu 20.04 LTS
Сообщество свободного программного обеспечения Debian GNU/Linux 12
Canonical Ltd. Ubuntu 22.04 LTS
Red Hat Inc. Red Hat Enterprise Linux 9
Canonical Ltd. Ubuntu 22.10
Red Hat Inc. Red Hat Enterprise Linux 9.0 Extended Update Support
Canonical Ltd. Ubuntu 18.04 ESM

Уровень опасности уязвимости

Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,8)
Средний уровень опасности (базовая оценка CVSS 3.0 составляет 4,9)

Возможные меры по устранению уязвимости

Использование рекомендаций производителя:
Для OpenSSL:
https://openssl-library.org/news/secadv/20230207.txt
Для программных продуктов Red Hat Inc.:
https://access.redhat.com/security/cve/cve-2022-4203
Для Debian GNU/Linux:
https://security-tracker.debian.org/tracker/CVE-2022-4203
Для Ubuntu:
https://ubuntu.com/security/CVE-2022-4203

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 60%
0.00404
Низкий

4.9 Medium

CVSS3

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2022-4203

CVSS3: 4.9
ubuntu
больше 2 лет назад

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. The read buffer overrun might result in a crash which could lead to a denial of service attack. In theory it could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext) although we are not aware of any working exploit leading to memory contents disclosure as of the time of release of this advisory. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

redhat логотип

CVE-2022-4203

CVSS3: 4.9
redhat
больше 2 лет назад

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. The read buffer overrun might result in a crash which could lead to a denial of service attack. In theory it could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext) although we are not aware of any working exploit leading to memory contents disclosure as of the time of release of this advisory. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

nvd логотип

CVE-2022-4203

CVSS3: 4.9
nvd
больше 2 лет назад

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. The read buffer overrun might result in a crash which could lead to a denial of service attack. In theory it could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext) although we are not aware of any working exploit leading to memory contents disclosure as of the time of release of this advisory. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

debian логотип

CVE-2022-4203

CVSS3: 4.9
debian
больше 2 лет назад

A read buffer overrun can be triggered in X.509 certificate verificati ...

github логотип

GHSA-w67w-mw4j-8qrv

CVSS3: 9.1
github
больше 2 лет назад

openssl-src contains Read Buffer Overflow in X.509 Name Constraint

EPSS

Процентиль: 60%
0.00404
Низкий

4.9 Medium

CVSS3

6.8 Medium

CVSS2

Уязвимость BDU:2024-08864