Date: Thu, 26 Jan 2017 14:44:18 +0000 (UTC) From: Bernard Spil <brnrd@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r432511 - head/security/vuxml Message-ID: <201701261444.v0QEiIVf046211@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: brnrd Date: Thu Jan 26 14:44:18 2017 New Revision: 432511 URL: https://svnweb.freebsd.org/changeset/ports/432511 Log: security/vuxml: Document new OpenSSL vulnerabilities Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Thu Jan 26 14:38:41 2017 (r432510) +++ head/security/vuxml/vuln.xml Thu Jan 26 14:44:18 2017 (r432511) @@ -58,6 +58,71 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="d455708a-e3d3-11e6-9940-b499baebfeaf"> + <topic>OpenSSL -- multiple vulnerabilities</topic> + <affects> + <package> + <name>openssl</name> + <range><lt>1.0.2k</lt></range> + </package> + <package> + <name>openssl-devel</name> + <range><lt>1.1.0d</lt></range> + </package> </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>The OpenSSL project reports:</p> + <blockquote cite="https://www.openssl.org/news/secadv/20170126.txt">; + <ul> + <li>Truncated packet could crash via OOB read (CVE-2017-3731)<br/> + Severity: Moderate<br/> + If an SSL/TLS server or client is running on a 32-bit host, and a specific + cipher is being used, then a truncated packet can cause that server or client + to perform an out-of-bounds read, usually resulting in a crash.</li> + <li>Bad (EC)DHE parameters cause a client crash (CVE-2017-3730)<br/> + Severity: Moderate<br/> + If a malicious server supplies bad parameters for a DHE or ECDHE key exchange + then this can result in the client attempting to dereference a NULL pointer + leading to a client crash. This could be exploited in a Denial of Service + attack.</li> + <li>BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)<br/> + Severity: Moderate<br/> + There is a carry propagating bug in the x86_64 Montgomery squaring procedure. No + EC algorithms are affected. Analysis suggests that attacks against RSA and DSA + as a result of this defect would be very difficult to perform and are not + believed likely. Attacks against DH are considered just feasible (although very + difficult) because most of the work necessary to deduce information + about a private key may be performed offline. The amount of resources + required for such an attack would be very significant and likely only + accessible to a limited number of attackers. An attacker would + additionally need online access to an unpatched system using the target + private key in a scenario with persistent DH parameters and a private + key that is shared between multiple clients. For example this can occur by + default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very + similar to CVE-2015-3193 but must be treated as a separate problem.</li> + <li>Montgomery multiplication may produce incorrect results (CVE-2016-7055)<br/> + Severity: Low<br/> + There is a carry propagating bug in the Broadwell-specific Montgomery + multiplication procedure that handles input lengths divisible by, but + longer than 256 bits. (OpenSSL 1.0.2 only)<br/> + This issue was previously fixed in 1.1.0c</li> + </ul> + </blockquote> + </body> + </description> + <references> + <url>https://www.openssl.org/news/secadv/20170126.txt</url>; + <cvename>CVE-2016-7055</cvename> + <cvename>CVE-2017-3730</cvename> + <cvename>CVE-2017-3731</cvename> + <cvename>CVE-2017-3732</cvename> + </references> + <dates> + <discovery>2017-01-26</discovery> + <entry>2017-01-26</entry> + </dates> + </vuln> + <vuln vid="e60169c4-aa86-46b0-8ae2-0d81f683df09"> <topic>mozilla -- multiple vulnerabilities</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201701261444.v0QEiIVf046211>