rhsa-2020_4514
Vulnerability from csaf_redhat
Published
2020-11-04 02:16
Modified
2024-11-05 22:54
Summary
Red Hat Security Advisory: openssl security, bug fix, and enhancement update

Notes

Topic
An update for openssl is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. The following packages have been upgraded to a later upstream version: openssl (1.1.1g). (BZ#1817593) Security Fix(es): * openssl: Integer overflow in RSAZ modular exponentiation on x86_64 (CVE-2019-1551) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.



{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for openssl is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nThe following packages have been upgraded to a later upstream version: openssl (1.1.1g). (BZ#1817593)\n\nSecurity Fix(es):\n\n* openssl: Integer overflow in RSAZ modular exponentiation on x86_64 (CVE-2019-1551)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2020:4514",
        "url": "https://access.redhat.com/errata/RHSA-2020:4514"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/"
      },
      {
        "category": "external",
        "summary": "1780995",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780995"
      },
      {
        "category": "external",
        "summary": "1844607",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1844607"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4514.json"
      }
    ],
    "title": "Red Hat Security Advisory: openssl security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-05T22:54:37+00:00",
      "generator": {
        "date": "2024-11-05T22:54:37+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.1.1"
        }
      },
      "id": "RHSA-2020:4514",
      "initial_release_date": "2020-11-04T02:16:25+00:00",
      "revision_history": [
        {
          "date": "2020-11-04T02:16:25+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-11-04T02:16:25+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-05T22:54:37+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux BaseOS (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux BaseOS (v. 8)",
                  "product_id": "BaseOS-8.3.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=i686\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-devel-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-libs-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-perl-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                "product": {
                  "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_id": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openssl-1:1.1.1g-11.el8.src",
                "product": {
                  "name": "openssl-1:1.1.1g-11.el8.src",
                  "product_id": "openssl-1:1.1.1g-11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openssl@1.1.1g-11.el8?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.src",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-debugsource-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-debugsource-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-devel-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-devel-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-libs-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.aarch64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.ppc64le",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.s390x",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-perl-1:1.1.1g-11.el8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
          "product_id": "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
        },
        "product_reference": "openssl-perl-1:1.1.1g-11.el8.x86_64",
        "relates_to_product_reference": "BaseOS-8.3.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-1551",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2019-12-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1780995"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An integer overflow was found in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli.  As per upstream:\r\n\r\n* No EC algorithms are affected. \r\n\r\n* Attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. \r\n\r\n* Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway.\r\n\r\n* Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: Integer overflow in RSAZ modular exponentiation on x86_64",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Accelerated modular exponentiation for Intel processors (RSAZ) was introduced in openssl-1.0.2, therefore older versions of OpenSSL are not affected by this flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
          "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
          "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "RHBZ#1780995",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780995"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-1551",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-1551",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-1551"
        },
        {
          "category": "external",
          "summary": "https://github.com/openssl/openssl/pull/10575",
          "url": "https://github.com/openssl/openssl/pull/10575"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20191206.txt",
          "url": "https://www.openssl.org/news/secadv/20191206.txt"
        }
      ],
      "release_date": "2019-12-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-11-04T02:16:25+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
          "product_ids": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2020:4514"
        },
        {
          "category": "workaround",
          "details": "For Red Hat Enterprise Linux 7, 512 bit DH is already disabled. As this bug is about leakage of the private key to the attacker, it should be fully sufficient to just not use 1024 bit RSA keys or 1024 bit DSA keys. These keys are not secure enough anyway. 3-prime RSA keys are not supported on RHEL-7.\n\nFor Red Hat Enterprise 8, The DEFAULT crypto policy already disables all these key sizes.\n\nAlso applications compiled with openssl which use the low level  API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME, other users of this API are not affected by this flaw.",
          "product_ids": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.src",
            "BaseOS-8.3.0.GA:openssl-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-debugsource-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-devel-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.i686",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-libs-debuginfo-1:1.1.1g-11.el8.x86_64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.aarch64",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.ppc64le",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.s390x",
            "BaseOS-8.3.0.GA:openssl-perl-1:1.1.1g-11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "openssl: Integer overflow in RSAZ modular exponentiation on x86_64"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading...

Loading...

Loading...

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.