CVE-2010-1633
First published: Tue Jun 01 2010(Updated: )
From the upstream advisory [1]: Invalid Return value check in pkey_rsa_verifyrecover ==================================================== When verification recovery fails for RSA keys an uninitialised buffer with an undefined length is returned instead of an error code (<a href="https://access.redhat.com/security/cve/CVE-2010-1633">CVE-2010-1633</a>). This bug is only present in OpenSSL 1.0.0 and only affects applications that call the function EVP_PKEY_verify_recover(). As this function is not present in previous versions of OpenSSL and not used by OpenSSL internal code very few applications should be affected. The OpenSSL utility application "pkeyutl" does use this function. Affected users should update to 1.0.0a which contains a patch to correct this bug. Thanks to Peter-Michael Hager for reporting this issue. [1] <a href="http://www.openssl.org/news/secadv_20100601.txt">http://www.openssl.org/news/secadv_20100601.txt</a>
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenSSL libcrypto | =1.0.0 | |
| OpenSSL libcrypto | =1.0.0-beta1 | |
| OpenSSL libcrypto | =1.0.0-beta2 | |
| OpenSSL libcrypto | =1.0.0-beta3 | |
| OpenSSL libcrypto | =1.0.0-beta4 | |
| OpenSSL libcrypto | =1.0.0-beta5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://cvs.openssl.org/chngview?cn=19693
- http://cvs.openssl.org/filediff?f=openssl/crypto/rsa/rsa_pmeth.c&v1=1.34&v2=1.34.2.1
- http://secunia.com/advisories/40024
- http://secunia.com/advisories/57353
- http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004564
- http://www.openssl.org/news/secadv_20100601.txt
- http://www.securityfocus.com/bid/40503
- http://www.vupen.com/english/advisories/2010/1313
- https://bugzilla.redhat.com/show_bug.cgi?id=598732
- https://access.redhat.com/security/cve/CVE-2010-1633
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=598736
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=598737
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=598732#c4
- http://admin.fedoraproject.org/updates/openssl-1.0.0a-1.fc13
- http://admin.fedoraproject.org/updates/openssl-1.0.0a-1.fc12
- https://www.cve.org/CVERecord?id=CVE-2010-1633 https://nvd.nist.gov/vuln/detail/CVE-2010-1633
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1633.json
Frequently Asked Questions
What is the severity of CVE-2010-1633?
CVE-2010-1633 is classified as a moderate severity vulnerability affecting OpenSSL versions 1.0.0 and its betas.
How do I fix CVE-2010-1633?
To fix CVE-2010-1633, upgrade to a patched version of OpenSSL, specifically version 1.0.1 or later.
What can happen if I don't mitigate CVE-2010-1633?
Failing to mitigate CVE-2010-1633 could lead to unauthorized access or exploitation through the use of RSA keys.
What is the nature of the flaw in CVE-2010-1633?
CVE-2010-1633 involves an invalid return value check in the pkey_rsa_verifyrecover function that returns an uninitialized buffer.
Which OpenSSL versions are affected by CVE-2010-1633?
CVE-2010-1633 affects OpenSSL version 1.0.0 and all beta versions leading up to it.
- agent/type
- agent/author
- agent/softwarecombine
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-1633
- collector/redhat-cve
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/references
- agent/remedy
- agent/weakness
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-api
- vendor/openssl
- canonical/openssl libcrypto
- version/openssl libcrypto/1.0.0
- version/openssl libcrypto/1.0.0-beta1
- version/openssl libcrypto/1.0.0-beta2
- version/openssl libcrypto/1.0.0-beta3
- version/openssl libcrypto/1.0.0-beta4
- version/openssl libcrypto/1.0.0-beta5