First published: Tue Apr 21 2020(Updated: )
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm is received from the peer. This could be exploited by a malicious peer in a Denial of Service attack. OpenSSL version 1.1.1d, 1.1.1e, and 1.1.1f are affected by this issue. This issue did not affect OpenSSL versions prior to 1.1.1d. Fixed in OpenSSL 1.1.1g (Affected 1.1.1d-1.1.1f).
Credit: openssl-security@openssl.org
Affected Software | Affected Version | How to fix |
---|---|---|
debian/openssl | 1.1.1n-0+deb10u3 1.1.1n-0+deb10u6 1.1.1w-0+deb11u1 1.1.1n-0+deb11u5 3.0.11-1~deb12u1 3.0.11-1 | |
OpenSSL OpenSSL | >=1.1.1d<=1.1.1f | |
Debian Debian Linux | =9.0 | |
Debian Debian Linux | =10.0 | |
FreeBSD FreeBSD | =12.1 | |
Fedoraproject Fedora | =30 | |
Fedoraproject Fedora | =31 | |
Fedoraproject Fedora | =32 | |
Oracle Application Server | =12.1.3 | |
Oracle Enterprise Manager Base Platform | =13.4.0.0 | |
Oracle Enterprise Manager For Storage Management | =13.3.0.0 | |
Oracle Enterprise Manager For Storage Management | =13.4.0.0 | |
Oracle Enterprise Manager Ops Center | =12.4.0 | |
Oracle HTTP Server | =12.2.1.4.0 | |
Oracle Jd Edwards World Security | =a9.4 | |
Oracle MySQL | <=5.6.48 | |
Oracle MySQL | >=5.7.0<=5.7.30 | |
Oracle MySQL | >=8.0.0<=8.0.20 | |
Oracle Mysql Connectors | <=8.0.20 | |
Oracle Mysql Enterprise Monitor | <=4.0.12 | |
Oracle Mysql Enterprise Monitor | >=8.0.0<=8.0.20 | |
Oracle Mysql Workbench | <=8.0.21 | |
Oracle PeopleSoft Enterprise PeopleTools | =8.56 | |
Oracle PeopleSoft Enterprise PeopleTools | =8.57 | |
Oracle PeopleSoft Enterprise PeopleTools | =8.58 | |
Oracle PeopleSoft Enterprise PeopleTools | =8.59 | |
Netapp Active Iq Unified Manager Windows | >=7.3 | |
Netapp Active Iq Unified Manager Vmware Vsphere | >=9.5 | |
Netapp E-series Performance Analyzer | ||
NetApp OnCommand Insight | ||
NetApp OnCommand Workflow Automation | ||
Netapp Smi-s Provider | ||
Netapp Snapcenter | ||
Netapp Steelstore Cloud Integrated Storage | ||
Broadcom Fabric Operating System | ||
openSUSE Leap | =15.1 | |
openSUSE Leap | =15.2 | |
Jdedwards Enterpriseone | <9.2.5.0 | |
Tenable Log Correlation Engine | <6.0.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2020-1967.
CVE-2020-1967 has a severity rating of 7.5 (High).
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake are affected.
The impact of CVE-2020-1967 is a crash of the application due to a NULL pointer dereference.
To fix CVE-2020-1967, update to the recommended versions of OpenSSL or apply the provided patches.