Описание
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.0.2e-1ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 1.0.1f-1ubuntu2.15 |
| precise | not-affected | 1.0.1-4ubuntu5.31 |
| trusty | not-affected | 1.0.1f-1ubuntu2.15 |
| trusty/esm | not-affected | 1.0.1f-1ubuntu2.15 |
| upstream | released | 1.0.2e |
| vivid | not-affected | 1.0.1f-1ubuntu11.4 |
| vivid/stable-phone-overlay | released | 1.0.1f-1ubuntu11.5 |
| vivid/ubuntu-core | released | 1.0.1f-1ubuntu11.5 |
| wily | released | 1.0.2d-0ubuntu1.2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| precise | not-affected | |
| trusty | not-affected | |
| trusty/esm | DNE | trusty was not-affected |
| upstream | not-affected | |
| vivid | not-affected | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | DNE |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.p ...
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key information via an attack against use of a (1) Diffie-Hellman (DH) or (2) Diffie-Hellman Ephemeral (DHE) ciphersuite.
Уязвимость функции BN_mod_exp (crypto/bn/asm/x86_64-mont5.pl) библиотеки OpenSSL, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным
EPSS
5 Medium
CVSS2
7.5 High
CVSS3