First published: Mon Mar 30 2015(Updated: )
It was discovered that the Invariance Weakness of the RC4 stream cipher could be used to recover plaintext from a TLS connection, when RC4 encryption is used. "The Invariance Weakness is an L-shape key pattern in RC4 keys, which once it exists in an RC4 key, preserves part of the state permutation intact throughout the initialization process. This intact part includes the least significant bits of the permutation, when processed by the PRGA algorithm, determines the least significant bits of the allegedly pseudo-random output stream along a long prefix of the stream." This can lead to significant leakage of plaintext bytes from the ciphertext. External Reference: <a href="http://www.imperva.com/docs/HII_Attacking_SSL_when_using_RC4.pdf">http://www.imperva.com/docs/HII_Attacking_SSL_when_using_RC4.pdf</a>
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/java | <1.7.0-oracle-1:1.7.0.85-1jpp.1.el5_11 | 1.7.0-oracle-1:1.7.0.85-1jpp.1.el5_11 |
redhat/java | <1.6.0-sun-1:1.6.0.101-1jpp.1.el5_11 | 1.6.0-sun-1:1.6.0.101-1jpp.1.el5_11 |
redhat/java | <1.8.0-oracle-1:1.8.0.51-1jpp.2.el6_6 | 1.8.0-oracle-1:1.8.0.51-1jpp.2.el6_6 |
redhat/java | <1.7.0-oracle-1:1.7.0.85-1jpp.2.el6_6 | 1.7.0-oracle-1:1.7.0.85-1jpp.2.el6_6 |
redhat/java | <1.6.0-sun-1:1.6.0.101-1jpp.1.el6_6 | 1.6.0-sun-1:1.6.0.101-1jpp.1.el6_6 |
redhat/java | <1.8.0-oracle-1:1.8.0.51-1jpp.2.el7_1 | 1.8.0-oracle-1:1.8.0.51-1jpp.2.el7_1 |
redhat/java | <1.7.0-oracle-1:1.7.0.85-1jpp.2.el7_1 | 1.7.0-oracle-1:1.7.0.85-1jpp.2.el7_1 |
redhat/java | <1.6.0-sun-1:1.6.0.101-1jpp.1.el7_1 | 1.6.0-sun-1:1.6.0.101-1jpp.1.el7_1 |
redhat/java | <1.7.0-openjdk-1:1.7.0.85-2.6.1.3.el5_11 | 1.7.0-openjdk-1:1.7.0.85-2.6.1.3.el5_11 |
redhat/java | <1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el5_11 | 1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el5_11 |
redhat/java | <1.6.0-ibm-1:1.6.0.16.4-1jpp.1.el5 | 1.6.0-ibm-1:1.6.0.16.4-1jpp.1.el5 |
redhat/java | <1.7.0-ibm-1:1.7.0.9.0-1jpp.1.el5 | 1.7.0-ibm-1:1.7.0.9.0-1jpp.1.el5 |
redhat/java | <1.5.0-ibm-1:1.5.0.16.10-1jpp.1.el5 | 1.5.0-ibm-1:1.5.0.16.10-1jpp.1.el5 |
redhat/java | <1.8.0-openjdk-1:1.8.0.51-0.b16.el6_6 | 1.8.0-openjdk-1:1.8.0.51-0.b16.el6_6 |
redhat/java | <1.7.0-openjdk-1:1.7.0.85-2.6.1.3.el6_6 | 1.7.0-openjdk-1:1.7.0.85-2.6.1.3.el6_6 |
redhat/java | <1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el6_7 | 1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el6_7 |
redhat/java | <1.8.0-openjdk-1:1.8.0.51-1.b16.el7_1 | 1.8.0-openjdk-1:1.8.0.51-1.b16.el7_1 |
redhat/java | <1.7.0-openjdk-1:1.7.0.85-2.6.1.2.el7_1 | 1.7.0-openjdk-1:1.7.0.85-2.6.1.2.el7_1 |
redhat/java | <1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el7_1 | 1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el7_1 |
redhat/java | <1.6.0-ibm-1:1.6.0.16.4-1jpp.1.el6_6 | 1.6.0-ibm-1:1.6.0.16.4-1jpp.1.el6_6 |
redhat/java | <1.7.1-ibm-1:1.7.1.3.0-1jpp.2.el6_6 | 1.7.1-ibm-1:1.7.1.3.0-1jpp.2.el6_6 |
redhat/java | <1.5.0-ibm-1:1.5.0.16.10-1jpp.1.el6_6 | 1.5.0-ibm-1:1.5.0.16.10-1jpp.1.el6_6 |
redhat/java | <1.7.1-ibm-1:1.7.1.3.0-1jpp.2.el7_1 | 1.7.1-ibm-1:1.7.1.3.0-1jpp.2.el7_1 |
Oracle Communications Application Session Controller | >=3.0.0<=3.9.0 | |
Oracle Communications Policy Management | <9.9.2 | |
Oracle HTTP Server | =11.1.1.7.0 | |
Oracle HTTP Server | =11.1.1.9.0 | |
Oracle HTTP Server | =12.1.3.0.0 | |
Oracle HTTP Server | =12.2.1.1.0 | |
Oracle HTTP Server | =12.2.1.2.0 | |
Oracle Integrated Lights Out Manager Firmware | >=3.0.0<=3.2.11 | |
Oracle Integrated Lights Out Manager Firmware | >=4.0.0<=4.0.4 | |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =8.0 | |
Redhat Satellite | =5.7 | |
Redhat Enterprise Linux Desktop | =5.0 | |
Redhat Enterprise Linux Desktop | =6.0 | |
Redhat Enterprise Linux Desktop | =7.0 | |
Redhat Enterprise Linux Eus | =6.6 | |
Redhat Enterprise Linux Eus | =7.1 | |
Redhat Enterprise Linux Eus | =7.2 | |
Redhat Enterprise Linux Eus | =7.3 | |
Redhat Enterprise Linux Eus | =7.4 | |
Redhat Enterprise Linux Eus | =7.5 | |
Redhat Enterprise Linux Eus | =7.6 | |
Redhat Enterprise Linux Eus | =7.7 | |
Redhat Enterprise Linux Server | =5.0 | |
Redhat Enterprise Linux Server | =6.0 | |
Redhat Enterprise Linux Server | =7.0 | |
Redhat Enterprise Linux Server Aus | =6.6 | |
Redhat Enterprise Linux Server Aus | =7.3 | |
Redhat Enterprise Linux Server Aus | =7.4 | |
Redhat Enterprise Linux Server Aus | =7.6 | |
Redhat Enterprise Linux Server Aus | =7.7 | |
Redhat Enterprise Linux Server Tus | =7.3 | |
Redhat Enterprise Linux Server Tus | =7.6 | |
Redhat Enterprise Linux Server Tus | =7.7 | |
Redhat Enterprise Linux Workstation | =5.0 | |
Redhat Enterprise Linux Workstation | =6.0 | |
Redhat Enterprise Linux Workstation | =7.0 | |
SUSE Linux Enterprise Debuginfo | =11-sp3 | |
SUSE Linux Enterprise Debuginfo | =11-sp4 | |
openSUSE openSUSE | =13.1 | |
openSUSE openSUSE | =13.2 | |
SUSE Linux Enterprise Desktop | =11-sp3 | |
SUSE Linux Enterprise Desktop | =11-sp4 | |
SUSE Linux Enterprise Desktop | =12 | |
SUSE Linux Enterprise Server | =10-sp4 | |
SUSE Linux Enterprise Server | =11-sp1 | |
SUSE Linux Enterprise Server | =11-sp2 | |
Suse Linux Enterprise Server | =11-sp3 | |
SUSE Linux Enterprise Server | =12 | |
SUSE Linux Enterprise Software Development Kit | =11-sp3 | |
SUSE Linux Enterprise Software Development Kit | =12 | |
SUSE Manager | =1.7 | |
SUSE Linux Enterprise Server | =11-sp2 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.04 | |
Redhat Satellite | =5.6 | |
Redhat Enterprise Linux | =5.0 | |
Redhat Enterprise Linux | =6.0 | |
Fujitsu Sparc Enterprise M3000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M3000 | ||
Fujitsu Sparc Enterprise M4000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M4000 | ||
Fujitsu Sparc Enterprise M5000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M5000 | ||
Fujitsu Sparc Enterprise M8000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M8000 | ||
Fujitsu Sparc Enterprise M9000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M9000 | ||
Huawei E6000 Firmware | ||
Huawei E6000 | ||
Huawei E9000 Firmware | ||
Huawei E9000 | ||
Huawei Oceanstor 18500 Firmware | ||
Huawei Oceanstor 18500 | ||
Huawei Oceanstor 18800 Firmware | ||
Huawei Oceanstor 18800 | ||
Huawei Oceanstor 18800f Firmware | ||
Huawei Oceanstor 18800f | ||
Huawei Oceanstor 9000 Firmware | ||
Huawei Oceanstor 9000 | ||
Huawei Oceanstor Cse Firmware | ||
Huawei Oceanstor Cse | ||
Huawei Oceanstor Hvs85t Firmware | ||
Huawei Oceanstor Hvs85t | ||
Huawei Oceanstor S2600t Firmware | ||
Huawei Oceanstor S2600t | ||
Huawei Oceanstor S5500t Firmware | ||
Huawei Oceanstor S5500t | ||
Huawei Oceanstor S5600t Firmware | ||
Huawei Oceanstor S5600t | ||
Huawei Oceanstor S5800t Firmware | ||
Huawei Oceanstor S5800t | ||
Huawei Oceanstor S6800t Firmware | ||
Huawei Oceanstor S6800t | ||
Huawei Oceanstor Vis6600t Firmware | ||
Huawei Oceanstor Vis6600t | ||
Huawei Quidway S9300 Firmware | ||
Huawei Quidway S9300 | ||
Huawei S7700 Firmware | ||
Huawei S7700 | ||
Huawei 9700 Firmware | ||
Huawei 9700 | ||
Huawei S12700 Firmware | ||
Huawei S12700 | ||
Huawei S2700 Firmware | ||
Huawei S2700 | ||
Huawei S3700 Firmware | ||
Huawei S3700 | ||
Huawei S5700ei Firmware | ||
Huawei S5700ei | ||
Huawei S5700hi Firmware | ||
Huawei S5700hi | ||
Huawei S5700si Firmware | ||
Huawei S5700si | ||
Huawei S5710ei Firmware | ||
Huawei S5710ei | ||
Huawei S5710hi Firmware | ||
Huawei S5710hi | ||
Huawei S6700 Firmware | ||
Huawei S6700 | ||
Huawei S2750 Firmware | ||
Huawei S2750 | ||
Huawei S5700li Firmware | ||
Huawei S5700li | ||
Huawei S5700s-li Firmware | ||
Huawei S5700s-li | ||
Huawei S5720hi Firmware | ||
Huawei S5720hi | ||
Huawei S5720ei Firmware | ||
Huawei S5720ei | ||
Huawei Te60 Firmware | ||
Huawei TE60 | ||
Huawei Oceanstor Replicationdirector | =v100r003c00 | |
Huawei Policy Center | =v100r003c00 | |
Huawei Policy Center | =v100r003c10 | |
Huawei SMC2.0 | =v100r002c01 | |
Huawei SMC2.0 | =v100r002c02 | |
Huawei SMC2.0 | =v100r002c03 | |
Huawei SMC2.0 | =v100r002c04 | |
Huawei Ultravr | =v100r003c00 | |
Ibm Cognos Metrics Manager | =10.1 | |
Ibm Cognos Metrics Manager | =10.1.1 | |
Ibm Cognos Metrics Manager | =10.2 | |
Ibm Cognos Metrics Manager | =10.2.1 | |
Ibm Cognos Metrics Manager | =10.2.2 | |
All of | ||
SUSE Manager | =1.7 | |
SUSE Linux Enterprise Server | =11-sp2 | |
All of | ||
Redhat Satellite | =5.6 | |
Any of | ||
Redhat Enterprise Linux | =5.0 | |
Redhat Enterprise Linux | =6.0 | |
All of | ||
Fujitsu Sparc Enterprise M3000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M3000 | ||
All of | ||
Fujitsu Sparc Enterprise M4000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M4000 | ||
All of | ||
Fujitsu Sparc Enterprise M5000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M5000 | ||
All of | ||
Fujitsu Sparc Enterprise M8000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M8000 | ||
All of | ||
Fujitsu Sparc Enterprise M9000 Firmware | >=xcp<xcp_1121 | |
Fujitsu Sparc Enterprise M9000 | ||
All of | ||
Huawei E6000 Firmware | ||
Huawei E6000 | ||
All of | ||
Huawei E9000 Firmware | ||
Huawei E9000 | ||
All of | ||
Huawei Oceanstor 18500 Firmware | ||
Huawei Oceanstor 18500 | ||
All of | ||
Huawei Oceanstor 18800 Firmware | ||
Huawei Oceanstor 18800 | ||
All of | ||
Huawei Oceanstor 18800f Firmware | ||
Huawei Oceanstor 18800f | ||
All of | ||
Huawei Oceanstor 9000 Firmware | ||
Huawei Oceanstor 9000 | ||
All of | ||
Huawei Oceanstor Cse Firmware | ||
Huawei Oceanstor Cse | ||
All of | ||
Huawei Oceanstor Hvs85t Firmware | ||
Huawei Oceanstor Hvs85t | ||
All of | ||
Huawei Oceanstor S2600t Firmware | ||
Huawei Oceanstor S2600t | ||
All of | ||
Huawei Oceanstor S5500t Firmware | ||
Huawei Oceanstor S5500t | ||
All of | ||
Huawei Oceanstor S5600t Firmware | ||
Huawei Oceanstor S5600t | ||
All of | ||
Huawei Oceanstor S5800t Firmware | ||
Huawei Oceanstor S5800t | ||
All of | ||
Huawei Oceanstor S6800t Firmware | ||
Huawei Oceanstor S6800t | ||
All of | ||
Huawei Oceanstor Vis6600t Firmware | ||
Huawei Oceanstor Vis6600t | ||
All of | ||
Huawei Quidway S9300 Firmware | ||
Huawei Quidway S9300 | ||
All of | ||
Huawei S7700 Firmware | ||
Huawei S7700 | ||
All of | ||
Huawei 9700 Firmware | ||
Huawei 9700 | ||
All of | ||
Huawei S12700 Firmware | ||
Huawei S12700 | ||
All of | ||
Huawei S2700 Firmware | ||
Huawei S2700 | ||
All of | ||
Huawei S3700 Firmware | ||
Huawei S3700 | ||
All of | ||
Huawei S5700ei Firmware | ||
Huawei S5700ei | ||
All of | ||
Huawei S5700hi Firmware | ||
Huawei S5700hi | ||
All of | ||
Huawei S5700si Firmware | ||
Huawei S5700si | ||
All of | ||
Huawei S5710ei Firmware | ||
Huawei S5710ei | ||
All of | ||
Huawei S5710hi Firmware | ||
Huawei S5710hi | ||
All of | ||
Huawei S6700 Firmware | ||
Huawei S6700 | ||
All of | ||
Huawei S2750 Firmware | ||
Huawei S2750 | ||
All of | ||
Huawei S5700li Firmware | ||
Huawei S5700li | ||
All of | ||
Huawei S5700s-li Firmware | ||
Huawei S5700s-li | ||
All of | ||
Huawei S5720hi Firmware | ||
Huawei S5720hi | ||
All of | ||
Huawei S5720ei Firmware | ||
Huawei S5720ei | ||
All of | ||
Huawei Te60 Firmware | ||
Huawei TE60 | ||
debian/openjdk-8 | 8u432-b06-2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)