CVE-2017-1000385
First published: Mon Dec 04 2017(Updated: )
An erlang TLS server configured with cipher suites using rsa key exchange, may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) against RSA, which when exploited, may result in plaintext recovery of encrypted messages and/or a Man-in-the-middle (MiTM) attack, despite the attacker not having gained access to the server’s private key itself. References: <a href="https://groups.google.com/forum/#!topic/erlang-programming/J0LH-j6fRlM">https://groups.google.com/forum/#!topic/erlang-programming/J0LH-j6fRlM</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/erlang | <20.1.7 | 20.1.7 |
| debian/erlang | 1:23.2.6+dfsg-1+deb11u1 1:25.2.3+dfsg-1 1:25.3.2.12+dfsg-3 | |
| Erlang/OTP | =18.3.4.7 | |
| Erlang/OTP | =19.3.6.4 | |
| Erlang/OTP | =20.1.7 | |
| Debian Linux | =8.0 | |
| Debian Linux | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://erlang.org/pipermail/erlang-questions/2017-November/094255.html
- http://erlang.org/pipermail/erlang-questions/2017-November/094256.html
- http://erlang.org/pipermail/erlang-questions/2017-November/094257.html
- http://www.securityfocus.com/bid/102197
- https://access.redhat.com/errata/RHSA-2018:0242
- https://access.redhat.com/errata/RHSA-2018:0303
- https://access.redhat.com/errata/RHSA-2018:0368
- https://access.redhat.com/errata/RHSA-2018:0528
- https://lists.debian.org/debian-lts-announce/2017/12/msg00010.html
- https://robotattack.org/
- https://usn.ubuntu.com/3571-1/
- https://www.debian.org/security/2017/dsa-4057
- https://www.kb.cert.org/vuls/id/144389
- https://launchpad.net/bugs/cve/CVE-2017-1000385
- https://groups.google.com/forum/#!topic/erlang-programming/J0LH-j6fRlM
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1520401
- https://access.redhat.com/security/updates/classification/
- https://bugzilla.redhat.com/show_bug.cgi?id=1520400
- https://github.com/erlang/otp/commit/38b07caa2a1c6cd3537eadd36770afa54f067562
- https://github.com/erlang/otp/commit/3b4386dd19b7e669f557c95ace8d7ba228291927
- https://github.com/erlang/otp/commit/de3b9cdb8521d7edd524b4e17d1e3f883f832ec0
- https://security-tracker.debian.org/tracker/CVE-2017-1000385
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000385
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000385
- https://ubuntu.com/security/CVE-2017-1000385
Frequently Asked Questions
What is the severity of CVE-2017-1000385?
CVE-2017-1000385 is considered a high-severity vulnerability due to the potential for plaintext recovery and Man-in-the-middle attacks.
How do I fix CVE-2017-1000385?
To fix CVE-2017-1000385, upgrade your Erlang installation to a version greater than 20.1.7 or to specific Debian packages like 1:23.2.6+dfsg-1+deb11u1.
What applications are affected by CVE-2017-1000385?
CVE-2017-1000385 affects Erlang versions 18.3.4.7, 19.3.6.4, and 20.1.7, as well as Debian systems running vulnerable Erlang packages.
What type of attack can be executed via CVE-2017-1000385?
CVE-2017-1000385 potentially allows for an Adaptive Chosen Ciphertext attack which can lead to plaintext message recovery.
Is CVE-2017-1000385 a local or remote vulnerability?
CVE-2017-1000385 is a remote vulnerability as it can be exploited over network connections targeting the configured TLS server.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/severity
- agent/weakness
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-1000385
- agent/software-canonical-lookup
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/security-tracker-debian
- source/Debian
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/description
- agent/event
- agent/source
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- package-manager/redhat
- package-manager/debian
- vendor/erlang
- canonical/erlang/otp
- version/erlang/otp/18.3.4.7
- version/erlang/otp/19.3.6.4
- version/erlang/otp/20.1.7
- vendor/debian
- canonical/debian linux
- version/debian linux/8.0
- version/debian linux/9.0