csaf_redhat - rhsa-2020

rhsa-2020_4514

Vulnerability from csaf_redhat

Published

2020-11-04 02:16

Modified

2024-11-05 22:54

Summary

Red Hat Security Advisory: openssl security, bug fix, and enhancement update

Notes

Topic

An update for openssl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. The following packages have been upgraded to a later upstream version: openssl (1.1.1g). (BZ#1817593) Security Fix(es): * openssl: Integer overflow in RSAZ modular exponentiation on x86_64 (CVE-2019-1551) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for openssl is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nThe following packages have been upgraded to a later upstream version: openssl (1.1.1g). (BZ#1817593)\n\nSecurity Fix(es):\n\n* openssl: Integer overflow in RSAZ modular exponentiation on x86_64 (CVE-2019-1551)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2020:4514",
        "url": "https://access.redhat.com/errata/RHSA-2020:4514"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/"
      },
      {
        "category": "external",
        "summary": "1780995",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780995"
      },
      {
        "category": "external",
        "summary": "1844607",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1844607"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4514.json"
      }
    ],
    "title": "Red Hat Security Advisory: openssl security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-05T22:54:37+00:00",
      "generator": {
        "date": "2024-11-05T22:54:37+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.1.1"
        }
      },
      "id": "RHSA-2020:4514",
      "initial_release_date": "2020-11-04T02:16:25+00:00",
      "revision_history": [
        {
          "date": "2020-11-04T02:16:25+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-11-04T02:16:25+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-05T22:54:37+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux BaseOS (v. 8)",
                  "product_id": "BaseOS-8.3.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.src",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.src",
                  "product_id": "openssl-1:1.1.1g-11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.src",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-1551",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2019-12-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1780995"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An integer overflow was found in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli.  As per upstream:\r\n\r\n* No EC algorithms are affected. \r\n\r\n* Attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. \r\n\r\n* Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway.\r\n\r\n* Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: Integer overflow in RSAZ modular exponentiation on x86_64",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Accelerated modular exponentiation for Intel processors (RSAZ) was introduced in openssl-1.0.2, therefore older versions of OpenSSL are not affected by this flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "RHBZ#1780995",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780995"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-1551",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-1551",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "https://github.com/openssl/openssl/pull/10575",
          "url": "https://github.com/openssl/openssl/pull/10575"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20191206.txt",
          "url": "https://www.openssl.org/news/secadv/20191206.txt"
        }
      ],
      "release_date": "2019-12-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-11-04T02:16:25+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
          "product_ids": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2020:4514"
        },
        {
          "category": "workaround",
          "details": "For Red Hat Enterprise Linux 7, 512 bit DH is already disabled. As this bug is about leakage of the private key to the attacker, it should be fully sufficient to just not use 1024 bit RSA keys or 1024 bit DSA keys. These keys are not secure enough anyway. 3-prime RSA keys are not supported on RHEL-7.\n\nFor Red Hat Enterprise 8, The DEFAULT crypto policy already disables all these key sizes.\n\nAlso applications compiled with openssl which use the low level  API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME, other users of this API are not affected by this flaw.",
          "product_ids": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "openssl: Integer overflow in RSAZ modular exponentiation on x86_64"
    }
  ]
}

cve-2019-1551

Vulnerability from cvelistv5

Published

2019-12-06 17:20

Modified

2024-09-16 19:40

Severity ?

Summary

rsaz_512_sqr overflow bug on x86_64

References

▼	URL	Tags
	https://seclists.org/bugtraq/2019/Dec/39	mailing-list, x_refsource_BUGTRAQ
	https://www.debian.org/security/2019/dsa-4594	vendor-advisory, x_refsource_DEBIAN
	https://seclists.org/bugtraq/2019/Dec/46	mailing-list, x_refsource_BUGTRAQ
	http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html	vendor-advisory, x_refsource_SUSE
	https://security.gentoo.org/glsa/202004-10	vendor-advisory, x_refsource_GENTOO
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/	vendor-advisory, x_refsource_FEDORA
	https://usn.ubuntu.com/4376-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.oracle.com/security-alerts/cpujul2020.html	x_refsource_MISC
	https://www.tenable.com/security/tns-2019-09	x_refsource_CONFIRM
	https://www.openssl.org/news/secadv/20191206.txt	x_refsource_CONFIRM
	https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=419102400a2811582a7a3d4a4e317d72e5ce0a8f	x_refsource_CONFIRM
	https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f1c5eea8a817075d31e43f5876993c6710238c98	x_refsource_CONFIRM
	https://security.netapp.com/advisory/ntap-20191210-0001/	x_refsource_CONFIRM
	http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html	x_refsource_MISC
	https://www.tenable.com/security/tns-2020-03	x_refsource_CONFIRM
	https://usn.ubuntu.com/4504-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.oracle.com/security-alerts/cpujan2021.html	x_refsource_MISC
	https://www.tenable.com/security/tns-2020-11	x_refsource_CONFIRM
	https://www.debian.org/security/2021/dsa-4855	vendor-advisory, x_refsource_DEBIAN
	https://www.oracle.com/security-alerts/cpuApr2021.html	x_refsource_MISC
	https://www.tenable.com/security/tns-2021-10	x_refsource_CONFIRM
	https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html	mailing-list, x_refsource_MLIST

Impacted products

▼	Vendor	Product
	OpenSSL	OpenSSL

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:20:28.285Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20191225 [slackware-security] openssl (SSA:2019-354-01)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Dec/39"
          },
          {
            "name": "DSA-4594",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4594"
          },
          {
            "name": "20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Dec/46"
          },
          {
            "name": "openSUSE-SU-2020:0062",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html"
          },
          {
            "name": "GLSA-202004-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-10"
          },
          {
            "name": "FEDORA-2020-fcc91a28e8",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
          },
          {
            "name": "FEDORA-2020-da2d1ef2d7",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
          },
          {
            "name": "FEDORA-2020-d7b29838f6",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
          },
          {
            "name": "USN-4376-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4376-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2019-09"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.openssl.org/news/secadv/20191206.txt"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=419102400a2811582a7a3d4a4e317d72e5ce0a8f"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f1c5eea8a817075d31e43f5876993c6710238c98"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20191210-0001/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2020-03"
          },
          {
            "name": "USN-4504-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4504-1/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2021.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2020-11"
          },
          {
            "name": "DSA-4855",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2021/dsa-4855"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2021-10"
          },
          {
            "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2952-1] openssl security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "OpenSSL",
          "vendor": "OpenSSL",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d)"
            },
            {
              "status": "affected",
              "version": "Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t)"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "OSS-Fuzz and Guido Vranken"
        }
      ],
      "datePublic": "2019-12-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t)."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "lang": "eng",
              "url": "https://www.openssl.org/policies/secpolicy.html#Low",
              "value": "Low"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Integer overflow bug",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-03-17T11:06:09",
        "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "shortName": "openssl"
      },
      "references": [
        {
          "name": "20191225 [slackware-security] openssl (SSA:2019-354-01)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Dec/39"
        },
        {
          "name": "DSA-4594",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4594"
        },
        {
          "name": "20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Dec/46"
        },
        {
          "name": "openSUSE-SU-2020:0062",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html"
        },
        {
          "name": "GLSA-202004-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-10"
        },
        {
          "name": "FEDORA-2020-fcc91a28e8",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
        },
        {
          "name": "FEDORA-2020-da2d1ef2d7",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
        },
        {
          "name": "FEDORA-2020-d7b29838f6",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
        },
        {
          "name": "USN-4376-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4376-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tenable.com/security/tns-2019-09"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.openssl.org/news/secadv/20191206.txt"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=419102400a2811582a7a3d4a4e317d72e5ce0a8f"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f1c5eea8a817075d31e43f5876993c6710238c98"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20191210-0001/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tenable.com/security/tns-2020-03"
        },
        {
          "name": "USN-4504-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4504-1/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2021.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tenable.com/security/tns-2020-11"
        },
        {
          "name": "DSA-4855",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2021/dsa-4855"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tenable.com/security/tns-2021-10"
        },
        {
          "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2952-1] openssl security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html"
        }
      ],
      "title": "rsaz_512_sqr overflow bug on x86_64",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "openssl-security@openssl.org",
          "DATE_PUBLIC": "2019-12-06",
          "ID": "CVE-2019-1551",
          "STATE": "PUBLIC",
          "TITLE": "rsaz_512_sqr overflow bug on x86_64"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "OpenSSL",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d)"
                          },
                          {
                            "version_value": "Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "OpenSSL"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "OSS-Fuzz and Guido Vranken"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t)."
            }
          ]
        },
        "impact": [
          {
            "lang": "eng",
            "url": "https://www.openssl.org/policies/secpolicy.html#Low",
            "value": "Low"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Integer overflow bug"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20191225 [slackware-security] openssl (SSA:2019-354-01)",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Dec/39"
            },
            {
              "name": "DSA-4594",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4594"
            },
            {
              "name": "20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Dec/46"
            },
            {
              "name": "openSUSE-SU-2020:0062",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html"
            },
            {
              "name": "GLSA-202004-10",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-10"
            },
            {
              "name": "FEDORA-2020-fcc91a28e8",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
            },
            {
              "name": "FEDORA-2020-da2d1ef2d7",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
            },
            {
              "name": "FEDORA-2020-d7b29838f6",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
            },
            {
              "name": "USN-4376-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4376-1/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2020.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
            },
            {
              "name": "https://www.tenable.com/security/tns-2019-09",
              "refsource": "CONFIRM",
              "url": "https://www.tenable.com/security/tns-2019-09"
            },
            {
              "name": "https://www.openssl.org/news/secadv/20191206.txt",
              "refsource": "CONFIRM",
              "url": "https://www.openssl.org/news/secadv/20191206.txt"
            },
            {
              "name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=419102400a2811582a7a3d4a4e317d72e5ce0a8f",
              "refsource": "CONFIRM",
              "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=419102400a2811582a7a3d4a4e317d72e5ce0a8f"
            },
            {
              "name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=f1c5eea8a817075d31e43f5876993c6710238c98",
              "refsource": "CONFIRM",
              "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=f1c5eea8a817075d31e43f5876993c6710238c98"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20191210-0001/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20191210-0001/"
            },
            {
              "name": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html"
            },
            {
              "name": "https://www.tenable.com/security/tns-2020-03",
              "refsource": "CONFIRM",
              "url": "https://www.tenable.com/security/tns-2020-03"
            },
            {
              "name": "USN-4504-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4504-1/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2021.html"
            },
            {
              "name": "https://www.tenable.com/security/tns-2020-11",
              "refsource": "CONFIRM",
              "url": "https://www.tenable.com/security/tns-2020-11"
            },
            {
              "name": "DSA-4855",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2021/dsa-4855"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuApr2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
            },
            {
              "name": "https://www.tenable.com/security/tns-2021-10",
              "refsource": "CONFIRM",
              "url": "https://www.tenable.com/security/tns-2021-10"
            },
            {
              "name": "[debian-lts-announce] 20220317 [SECURITY] [DLA 2952-1] openssl security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
    "assignerShortName": "openssl",
    "cveId": "CVE-2019-1551",
    "datePublished": "2019-12-06T17:20:14.842234Z",
    "dateReserved": "2018-11-28T00:00:00",
    "dateUpdated": "2024-09-16T19:40:14.240Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted