Lucene search

[email protected]CVE-2016-2107

HistoryMay 05, 2016 - 1:59 a.m.

CVE-2016-2107

2016-05-0501:59:03

CWE-310

CWE-200

[email protected]

web.nvd.nist.gov

515

openssl

cve-2016-2107

memory allocation

padding-oracle

aes cbc session

nvd

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.9

Confidence

High

EPSS

0.968

Percentile

99.7%

JSON

The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.

Affected configurations

NVD

Node

redhatenterprise_linux_desktopMatch7.0

redhatenterprise_linux_hpc_nodeMatch7.0

redhatenterprise_linux_hpc_node_eusMatch7.2

redhatenterprise_linux_serverMatch7.0

redhatenterprise_linux_server_ausMatch7.2

redhatenterprise_linux_server_eusMatch7.2

redhatenterprise_linux_workstationMatch7.0

Node

opensuseleapMatch42.1

opensuseopensuseMatch13.2

Node

opensslopensslRange≤1.0.1s

opensslopensslMatch1.0.2

opensslopensslMatch1.0.2beta1

opensslopensslMatch1.0.2beta2

opensslopensslMatch1.0.2beta3

opensslopensslMatch1.0.2a

opensslopensslMatch1.0.2b

opensslopensslMatch1.0.2c

opensslopensslMatch1.0.2d

opensslopensslMatch1.0.2e

opensslopensslMatch1.0.2f

opensslopensslMatch1.0.2g

Node

googleandroidMatch4.0

googleandroidMatch4.0.1

googleandroidMatch4.0.2

googleandroidMatch4.0.3

googleandroidMatch4.0.4

googleandroidMatch4.1

googleandroidMatch4.1.2

googleandroidMatch4.2

googleandroidMatch4.2.1

googleandroidMatch4.2.2

googleandroidMatch4.3

googleandroidMatch4.3.1

googleandroidMatch4.4

googleandroidMatch4.4.1

googleandroidMatch4.4.2

googleandroidMatch4.4.3

googleandroidMatch5.0

googleandroidMatch5.0.1

googleandroidMatch5.1

googleandroidMatch5.1.0

Node

hphelion_openstackMatch2.0.0

hphelion_openstackMatch2.1.0

hphelion_openstackMatch2.1.2

hphelion_openstackMatch2.1.4

Node

redhatenterprise_linux_desktopMatch6.0

redhatenterprise_linux_hpc_nodeMatch6.0

redhatenterprise_linux_serverMatch6.0

redhatenterprise_linux_workstationMatch6.0

Node

nodejsnode.jsRange0.10.0–0.10.45

nodejsnode.jsRange0.12.0–0.12.14

nodejsnode.jsRange4.0.0–4.1.2-

nodejsnode.jsRange4.2.0–4.4.4lts

nodejsnode.jsRange5.0.0–5.11.1-

nodejsnode.jsMatch6.0.0

Node

debiandebian_linuxMatch8.0

Node

canonicalubuntu_linuxMatch12.04-

canonicalubuntu_linuxMatch14.04esm

canonicalubuntu_linuxMatch15.10

canonicalubuntu_linuxMatch16.04esm

VendorProductVersionCPE
redhatenterprise_linux_desktop7.0cpe:/o:redhat:enterprise_linux_desktop:7.0:::
redhatenterprise_linux_hpc_node7.0cpe:/o:redhat:enterprise_linux_hpc_node:7.0:::
redhatenterprise_linux_server_eus7.2cpe:/o:redhat:enterprise_linux_server_eus:7.2:::
redhatenterprise_linux_server7.0cpe:/o:redhat:enterprise_linux_server:7.0:::
redhatenterprise_linux_workstation7.0cpe:/o:redhat:enterprise_linux_workstation:7.0:::
redhatenterprise_linux_server_aus7.2cpe:/o:redhat:enterprise_linux_server_aus:7.2:::
redhatenterprise_linux_hpc_node_eus7.2cpe:/o:redhat:enterprise_linux_hpc_node_eus:7.2:::

Vendor	Product	Version	CPE
redhat	enterprise_linux_desktop	7.0	cpe:/o:redhat:enterprise_linux_desktop:7.0:::
redhat	enterprise_linux_hpc_node	7.0	cpe:/o:redhat:enterprise_linux_hpc_node:7.0:::
redhat	enterprise_linux_server_eus	7.2	cpe:/o:redhat:enterprise_linux_server_eus:7.2:::
redhat	enterprise_linux_server	7.0	cpe:/o:redhat:enterprise_linux_server:7.0:::
redhat	enterprise_linux_workstation	7.0	cpe:/o:redhat:enterprise_linux_workstation:7.0:::
redhat	enterprise_linux_server_aus	7.2	cpe:/o:redhat:enterprise_linux_server_aus:7.2:::
redhat	enterprise_linux_hpc_node_eus	7.2	cpe:/o:redhat:enterprise_linux_hpc_node_eus:7.2:::

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10759

lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/183457.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/183607.html

lists.fedoraproject.org/pipermail/package-announce/2016-May/184605.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00001.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00008.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00011.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00013.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00014.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00016.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00019.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00019.html

packetstormsecurity.com/files/136912/Slackware-Security-Advisory-openssl-Updates.html

rhn.redhat.com/errata/RHSA-2016-0722.html

rhn.redhat.com/errata/RHSA-2016-0996.html

rhn.redhat.com/errata/RHSA-2016-2073.html

rhn.redhat.com/errata/RHSA-2016-2957.html

source.android.com/security/bulletin/2016-07-01.html

support.citrix.com/article/CTX212736

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-openssl

web-in-security.blogspot.ca/2016/05/curious-padding-oracle-in-openssl-cve.html

www.debian.org/security/2016/dsa-3566

www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

www.securityfocus.com/bid/89760

www.securityfocus.com/bid/91787

www.securitytracker.com/id/1035721

www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.542103

www.ubuntu.com/usn/USN-2959-1

blog.cloudflare.com/yet-another-padding-oracle-in-openssl-cbc-ciphersuites/

bto.bluecoat.com/security-advisory/sa123

cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=68595c0c2886e7942a14f98c17a55a88afb6c292

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03726en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03728en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03756en_us

h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03765en_us

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05164862

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05320149

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05386804

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40202

kc.mcafee.com/corporate/index?page=content&id=SB10160

security.gentoo.org/glsa/201612-16

security.netapp.com/advisory/ntap-20160504-0001/

support.apple.com/HT206903

www.exploit-db.com/exploits/39768/

www.freebsd.org/security/advisories/FreeBSD-SA-16:17.openssl.asc

www.openssl.org/news/secadv/20160503.txt

www.tenable.com/security/tns-2016-18

Social References

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.9

Confidence

High

EPSS

0.968

Percentile

99.7%

JSON

CVE-2016-2107

Affected configurations

References

Social References

Related