7.5
CWE
476
Advisory Published
Updated

CVE-2020-1967: Segmentation fault in SSL_check_chain

First published: Tue Apr 21 2020(Updated: )

Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL versions prior to 1.1.1d. Fixed in OpenSSL 1.1.1g (Affected 1.1.1d-1.1.1f).

Credit: openssl-security@openssl.org

Affected SoftwareAffected VersionHow to fix
debian/openssl
1.1.1n-0+deb10u3
1.1.1n-0+deb10u6
1.1.1w-0+deb11u1
1.1.1n-0+deb11u5
3.0.11-1~deb12u1
3.0.11-1
OpenSSL OpenSSL>=1.1.1d<=1.1.1f
Debian Debian Linux=9.0
Debian Debian Linux=10.0
FreeBSD FreeBSD=12.1
Fedoraproject Fedora=30
Fedoraproject Fedora=31
Fedoraproject Fedora=32
Oracle Application Server=12.1.3
Oracle Enterprise Manager Base Platform=13.4.0.0
Oracle Enterprise Manager For Storage Management=13.3.0.0
Oracle Enterprise Manager For Storage Management=13.4.0.0
Oracle Enterprise Manager Ops Center=12.4.0
Oracle HTTP Server=12.2.1.4.0
Oracle Jd Edwards World Security=a9.4
Oracle MySQL<=5.6.48
Oracle MySQL>=5.7.0<=5.7.30
Oracle MySQL>=8.0.0<=8.0.20
Oracle Mysql Connectors<=8.0.20
Oracle Mysql Enterprise Monitor<=4.0.12
Oracle Mysql Enterprise Monitor>=8.0.0<=8.0.20
Oracle Mysql Workbench<=8.0.21
Oracle PeopleSoft Enterprise PeopleTools=8.56
Oracle PeopleSoft Enterprise PeopleTools=8.57
Oracle PeopleSoft Enterprise PeopleTools=8.58
Oracle PeopleSoft Enterprise PeopleTools=8.59
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
Netapp E-series Performance Analyzer
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
Netapp Smi-s Provider
Netapp Snapcenter
Netapp Steelstore Cloud Integrated Storage
Broadcom Fabric Operating System
openSUSE Leap=15.1
openSUSE Leap=15.2
Jdedwards Enterpriseone<9.2.5.0
Tenable Log Correlation Engine<6.0.9

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Reference Links

Frequently Asked Questions

  • What is the vulnerability ID for this issue?

    The vulnerability ID for this issue is CVE-2020-1967.

  • How severe is CVE-2020-1967?

    CVE-2020-1967 has a severity rating of 7.5 (High).

  • Which applications are affected by CVE-2020-1967?

    Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake are affected.

  • What is the impact of CVE-2020-1967?

    The impact of CVE-2020-1967 is a crash of the application due to a NULL pointer dereference.

  • How can I fix CVE-2020-1967?

    To fix CVE-2020-1967, update to the recommended versions of OpenSSL or apply the provided patches.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203