CVE-2020-1971: EDIPARTYNAME NULL pointer dereference
First published: Wed Dec 02 2020(Updated: )
A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERAL_NAME_cmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability.
Credit: openssl-security@openssl.org openssl-security@openssl.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/jbcs-httpd24-brotli | <0:1.0.6-40.jbcs.el7 | 0:1.0.6-40.jbcs.el7 |
| redhat/jbcs-httpd24-httpd | <0:2.4.37-66.jbcs.el7 | 0:2.4.37-66.jbcs.el7 |
| redhat/jbcs-httpd24-nghttp2 | <0:1.39.2-35.jbcs.el7 | 0:1.39.2-35.jbcs.el7 |
| redhat/jbcs-httpd24-openssl | <1:1.1.1g-3.jbcs.el7 | 1:1.1.1g-3.jbcs.el7 |
| redhat/jbcs-httpd24-openssl-chil | <0:1.0.0-3.jbcs.el7 | 0:1.0.0-3.jbcs.el7 |
| redhat/jbcs-httpd24-openssl-pkcs11 | <0:0.4.10-18.jbcs.el7 | 0:0.4.10-18.jbcs.el7 |
| redhat/openssl | <0:1.0.1e-59.el6_10 | 0:1.0.1e-59.el6_10 |
| redhat/openssl | <1:1.0.2k-21.el7_9 | 1:1.0.2k-21.el7_9 |
| redhat/openssl | <1:1.0.1e-52.el7_2 | 1:1.0.1e-52.el7_2 |
| redhat/openssl | <1:1.0.1e-61.el7_3 | 1:1.0.1e-61.el7_3 |
| redhat/openssl | <1:1.0.2k-9.el7_4 | 1:1.0.2k-9.el7_4 |
| redhat/openssl | <1:1.0.2k-17.el7_6 | 1:1.0.2k-17.el7_6 |
| redhat/openssl | <1:1.0.2k-20.el7_7 | 1:1.0.2k-20.el7_7 |
| redhat/openssl | <1:1.1.1g-12.el8_3 | 1:1.1.1g-12.el8_3 |
| redhat/openssl | <1:1.1.1-9.el8_0 | 1:1.1.1-9.el8_0 |
| redhat/openssl | <1:1.1.1c-3.el8_1 | 1:1.1.1c-3.el8_1 |
| redhat/openssl | <1:1.1.1c-16.el8_2 | 1:1.1.1c-16.el8_2 |
| redhat/tomcat-native | <0:1.2.23-23.redhat_23.ep7.el7 | 0:1.2.23-23.redhat_23.ep7.el7 |
| redhat/jws5-tomcat | <0:9.0.36-9.redhat_8.1.el7 | 0:9.0.36-9.redhat_8.1.el7 |
| redhat/jws5-tomcat-native | <0:1.2.25-3.redhat_3.el7 | 0:1.2.25-3.redhat_3.el7 |
| redhat/jws5-tomcat | <0:9.0.36-9.redhat_8.1.el8 | 0:9.0.36-9.redhat_8.1.el8 |
| redhat/jws5-tomcat-native | <0:1.2.25-3.redhat_3.el8 | 0:1.2.25-3.redhat_3.el8 |
| redhat/openssl | <1.1.1 | 1.1.1 |
| debian/openssl | 1.1.1w-0+deb11u1 1.1.1w-0+deb11u2 3.0.15-1~deb12u1 3.0.14-1~deb12u2 3.4.1-1 | |
| IBM Security Verify Bridge | <=All | |
| OpenSSL | >=1.0.2<1.0.2x | |
| OpenSSL | >=1.1.1<1.1.1i | |
| Debian | =9.0 | |
| Debian | =10.0 | |
| Fedora | =32 | |
| Fedora | =33 | |
| Oracle API Gateway | =11.1.2.4.0 | |
| Oracle Business Intelligence Enterprise Edition | =5.5.0.0.0 | |
| Oracle Business Intelligence Enterprise Edition | =5.9.0.0.0 | |
| Oracle Business Intelligence Enterprise Edition | =12.2.1.3.0 | |
| Oracle Business Intelligence Enterprise Edition | =12.2.1.4.0 | |
| Oracle Communications Cloud Native Core Network Function Cloud Native Environment | =1.10.0 | |
| Oracle Communications Diameter Intelligence Hub | >=8.0.0<=8.1.0 | |
| Oracle Communications Diameter Intelligence Hub | >=8.2.0<=8.2.3 | |
| Oracle Communications Session Border Controller | =cz8.2 | |
| Oracle Communications Session Border Controller | =cz8.3 | |
| Oracle Communications Session Border Controller | =cz8.4 | |
| Oracle Communications Session Router | =cz8.2 | |
| Oracle Communications Session Router | =cz8.3 | |
| Oracle Communications Session Router | =cz8.4 | |
| Oracle Communications Subscriber-Aware Load Balancer | =cz8.2 | |
| Oracle Communications Subscriber-Aware Load Balancer | =cz8.3 | |
| Oracle Communications Subscriber-Aware Load Balancer | =cz8.4 | |
| Oracle Communications Unified Session Manager | =scz8.2.5 | |
| Oracle Enterprise Communications Broker | =pcz3.1 | |
| Oracle Enterprise Communications Broker | =pcz3.2 | |
| Oracle Enterprise Communications Broker | =pcz3.3 | |
| Oracle Enterprise Manager | =13.3.0.0 | |
| Oracle Enterprise Manager | =13.4.0.0 | |
| Oracle Enterprise Manager for Storage Management | =13.4.0.0 | |
| Oracle Enterprise Manager Ops Center | =12.4.0.0 | |
| Oracle Enterprise Session Border Controller | =cz8.2 | |
| Oracle Enterprise Session Border Controller | =cz8.3 | |
| Oracle Enterprise Session Border Controller | =cz8.4 | |
| Oracle Hyperion Essbase | =21.2 | |
| Oracle GraalVM Enterprise Edition | =19.3.4 | |
| Oracle GraalVM Enterprise Edition | =20.3.0 | |
| Oracle HTTP Server | =12.2.1.4.0 | |
| Oracle JD Edwards EnterpriseOne Tools | <9.2.5.3 | |
| Oracle JD Edwards World Security | =a9.4 | |
| Oracle MySQL | <=8.0.22 | |
| Oracle MySQL | <=5.7.32 | |
| Oracle MySQL | >=8.0.15<=8.0.22 | |
| Oracle Peoplesoft Enterprise Campus Software Campus Community | =8.56 | |
| Oracle Peoplesoft Enterprise Campus Software Campus Community | =8.57 | |
| Oracle Peoplesoft Enterprise Campus Software Campus Community | =8.58 | |
| NetApp Active IQ Unified Manager for VMware vSphere | ||
| NetApp Active IQ Unified Manager | ||
| NetApp ONTAP Antivirus Connector | ||
| IBM Data ONTAP | ||
| NetApp E-Series SANtricity OS Controller | >=11.0.0<=11.60.3 | |
| NetApp SolidFire & HCI Management Node | ||
| NetApp Manageability SDK | ||
| NetApp OnCommand Insight | ||
| NetApp OnCommand Workflow Automation | ||
| NetApp Plug-in for Symantec NetBackup | ||
| NetApp SANtricity SMI-S Provider Firmware | ||
| NetApp SnapCenter | ||
| NetApp SolidFire & HCI Storage Node | ||
| NetApp HCI Compute Node | ||
| NetApp SolidFire & HCI Storage Node | ||
| All of | ||
| NetApp EF600A | ||
| NetApp EF600A Firmware | ||
| All of | ||
| NetApp A250 Firmware | ||
| NetApp A250 Firmware | ||
| Tenable Log Correlation Engine | <6.0.9 | |
| Tenable Nessus | <5.13.1 | |
| Siemens SINEC Infrastructure Network Services | <1.0.1.1 | |
| Node.js | >=10.0.0<=10.12.0 | |
| Node.js | >=10.13.0<10.23.1 | |
| Node.js | >=12.0.0<=12.12.0 | |
| Node.js | >=12.13.0<12.20.1 | |
| Node.js | >=14.0.0<=14.14.0 | |
| Node.js | >=14.15.0<14.15.4 | |
| Node.js | >=15.0.0<15.5.0 | |
| NetApp EF600A | ||
| NetApp EF600A Firmware | ||
| NetApp A250 Firmware | ||
| NetApp A250 Firmware |
Remedy
Applications not using the GENERAL_NAME_cmp of openssl are not vulnerable to this flaw. Even when this function is used, if the attacker can control both the arguments of this function, only then the attacker could trigger a crash.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-1971 https://nvd.nist.gov/vuln/detail/CVE-2020-1971 https://www.openssl.org/news/secadv/20201208.txt
- https://bugzilla.redhat.com/show_bug.cgi?id=1903409
- https://access.redhat.com/errata/RHSA-2021:0486
- https://access.redhat.com/errata/RHSA-2021:0056
- https://access.redhat.com/errata/RHSA-2020:5566
- https://access.redhat.com/errata/RHSA-2020:5639
- https://access.redhat.com/errata/RHSA-2020:5640
- https://access.redhat.com/errata/RHSA-2020:5641
- https://access.redhat.com/errata/RHSA-2020:5642
- https://access.redhat.com/errata/RHSA-2020:5623
- https://access.redhat.com/errata/RHSA-2020:5476
- https://access.redhat.com/errata/RHSA-2020:5588
- https://access.redhat.com/errata/RHSA-2020:5637
- https://access.redhat.com/errata/RHSA-2020:5422
- https://access.redhat.com/errata/RHSA-2021:0488
- https://access.redhat.com/errata/RHSA-2021:0491
- https://access.redhat.com/errata/RHSA-2021:0489
- https://access.redhat.com/errata/RHSA-2021:0495
- https://access.redhat.com/errata/RHSA-2021:0494
- https://access.redhat.com/security/cve/cve-2020-1971
- http://www.openwall.com/lists/oss-security/2021/09/14/2
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2154ab83e14ede338d2ede9bbe5cdfce5d5a6c9e
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=f960d81215ebf3f65e03d4d5d857fb9b666d6920
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44676
- https://lists.apache.org/thread.html/r63c6f2dd363d9b514d0a4bcf624580616a679898cc14c109a49b750c@%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/rbb769f771711fb274e0a4acb1b5911c8aab544a6ac5e8c12d40c5143@%3Ccommits.pulsar.apache.org%3E
- https://lists.debian.org/debian-lts-announce/2020/12/msg00020.html
- https://lists.debian.org/debian-lts-announce/2020/12/msg00021.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGSI34Y5LQ5RYXN4M2I5ZQT65LFVDOUU/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PWPSSZNZOBJU2YR6Z4TGHXKYW3YP5QG7/
- https://security.FreeBSD.org/advisories/FreeBSD-SA-20:33.openssl.asc
- https://security.gentoo.org/glsa/202012-13
- https://security.netapp.com/advisory/ntap-20201218-0005/
- https://security.netapp.com/advisory/ntap-20210513-0002/
- https://www.debian.org/security/2020/dsa-4807
- https://www.openssl.org/news/secadv/20201208.txt
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujan2021.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://www.tenable.com/security/tns-2020-11
- https://www.tenable.com/security/tns-2021-09
- https://www.tenable.com/security/tns-2021-10
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1905605
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1905603
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1905604
- https://github.com/openssl/openssl/commit/3db2c9f3e5fb9f649ebb4a55918398756310af43
- https://github.com/openssl/openssl/commit/43a7033a010feaf72c79d39df65ca733fb9dcd4c
- https://github.com/openssl/openssl/commit/b33c48b75aaf33c93aeda42d7138616b9e6a64cb
- https://github.com/openssl/openssl/commit/22b88fc9c0e22545401c0b34d24843883ea73fec
- https://github.com/openssl/openssl/commit/97ab3c4b538840037812c8d9164d09a1f4bf11a1
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2154ab83e14ede338d2ede9bbe5cdfce5d5a6c9e
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=f960d81215ebf3f65e03d4d5d857fb9b666d6920
- https://lists.apache.org/thread.html/r63c6f2dd363d9b514d0a4bcf624580616a679898cc14c109a49b750c%40%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/rbb769f771711fb274e0a4acb1b5911c8aab544a6ac5e8c12d40c5143%40%3Ccommits.pulsar.apache.org%3E
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGSI34Y5LQ5RYXN4M2I5ZQT65LFVDOUU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PWPSSZNZOBJU2YR6Z4TGHXKYW3YP5QG7/
- https://security.netapp.com/advisory/ntap-20240621-0006/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/192748
- https://www.ibm.com/support/pages/node/6491653 (Advisory)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971
- https://nvd.nist.gov/vuln/detail/CVE-2020-1971
- https://launchpad.net/bugs/cve/CVE-2020-1971
- https://security-tracker.debian.org/tracker/CVE-2020-1971
- https://ubuntu.com/security/CVE-2020-1971
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=aa0ad2011d3e7ad8a611da274ef7d9c7706e289b
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ecc76f6746cefd502c7e9000bdfa4e5d7911386
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=41d62636fd996c031c0c7cef746476278583dc9e
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94ece6af0c89d596f9c5221b7df7d6582168c8ba
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=433974af7b188d55b1da049b84f3fdeca320cb6a
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2020-1971?
CVE-2020-1971 has been classified as a medium severity vulnerability, primarily impacting systems that utilize OpenSSL.
How do I fix CVE-2020-1971?
To fix CVE-2020-1971, update to the versions specified in the respective patches or releases provided by your software vendor.
Who is affected by CVE-2020-1971?
CVE-2020-1971 affects applications that use the OpenSSL library, particularly those built with specific versions noted in security advisories.
What type of vulnerability is CVE-2020-1971?
CVE-2020-1971 is a null pointer dereference vulnerability that can lead to a denial of service when exploited by an attacker.
What impact does CVE-2020-1971 have on systems?
The impact of CVE-2020-1971 is the potential for a remote attacker to cause a crash of the application, resulting in downtime.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- agent/severity
- agent/remedy
- agent/weakness
- agent/title
- agent/author
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/launchpad-cve
- source/Launchpad
- agent/references
- agent/trending
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-1971
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/source
- agent/event
- collector/security-tracker-debian
- source/Debian
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- collector/nvd-api
- collector/nvd-index
- package-manager/redhat
- package-manager/debian
- vendor/ibm
- canonical/ibm security verify bridge
- version/ibm security verify bridge/all
- vendor/openssl
- canonical/openssl
- version/openssl/1.0.2
- version/openssl/1.1.1
- vendor/debian
- canonical/debian
- version/debian/9.0
- version/debian/10.0
- vendor/fedoraproject
- canonical/fedora
- version/fedora/32
- version/fedora/33
- vendor/oracle
- canonical/oracle api gateway
- version/oracle api gateway/11.1.2.4.0
- canonical/oracle business intelligence enterprise edition
- version/oracle business intelligence enterprise edition/5.5.0.0.0
- version/oracle business intelligence enterprise edition/5.9.0.0.0
- version/oracle business intelligence enterprise edition/12.2.1.3.0
- version/oracle business intelligence enterprise edition/12.2.1.4.0
- canonical/oracle communications cloud native core network function cloud native environment
- version/oracle communications cloud native core network function cloud native environment/1.10.0
- canonical/oracle communications diameter intelligence hub
- version/oracle communications diameter intelligence hub/8.0.0
- version/oracle communications diameter intelligence hub/8.1.0
- version/oracle communications diameter intelligence hub/8.2.0
- version/oracle communications diameter intelligence hub/8.2.3
- canonical/oracle communications session border controller
- version/oracle communications session border controller/cz8.2
- version/oracle communications session border controller/cz8.3
- version/oracle communications session border controller/cz8.4
- canonical/oracle communications session router
- version/oracle communications session router/cz8.2
- version/oracle communications session router/cz8.3
- version/oracle communications session router/cz8.4
- canonical/oracle communications subscriber-aware load balancer
- version/oracle communications subscriber-aware load balancer/cz8.2
- version/oracle communications subscriber-aware load balancer/cz8.3
- version/oracle communications subscriber-aware load balancer/cz8.4
- canonical/oracle communications unified session manager
- version/oracle communications unified session manager/scz8.2.5
- canonical/oracle enterprise communications broker
- version/oracle enterprise communications broker/pcz3.1
- version/oracle enterprise communications broker/pcz3.2
- version/oracle enterprise communications broker/pcz3.3
- canonical/oracle enterprise manager
- version/oracle enterprise manager/13.3.0.0
- version/oracle enterprise manager/13.4.0.0
- canonical/oracle enterprise manager for storage management
- version/oracle enterprise manager for storage management/13.4.0.0
- canonical/oracle enterprise manager ops center
- version/oracle enterprise manager ops center/12.4.0.0
- canonical/oracle enterprise session border controller
- version/oracle enterprise session border controller/cz8.2
- version/oracle enterprise session border controller/cz8.3
- version/oracle enterprise session border controller/cz8.4
- canonical/oracle hyperion essbase
- version/oracle hyperion essbase/21.2
- canonical/oracle graalvm enterprise edition
- version/oracle graalvm enterprise edition/19.3.4
- version/oracle graalvm enterprise edition/20.3.0
- canonical/oracle http server
- version/oracle http server/12.2.1.4.0
- canonical/oracle jd edwards enterpriseone tools
- canonical/oracle jd edwards world security
- version/oracle jd edwards world security/a9.4
- canonical/oracle mysql
- version/oracle mysql/8.0.22
- version/oracle mysql/5.7.32
- version/oracle mysql/8.0.15
- canonical/oracle peoplesoft enterprise campus software campus community
- version/oracle peoplesoft enterprise campus software campus community/8.56
- version/oracle peoplesoft enterprise campus software campus community/8.57
- version/oracle peoplesoft enterprise campus software campus community/8.58
- vendor/netapp
- canonical/netapp active iq unified manager for vmware vsphere
- canonical/netapp active iq unified manager
- canonical/netapp ontap antivirus connector
- canonical/ibm data ontap
- canonical/netapp e-series santricity os controller
- version/netapp e-series santricity os controller/11.0.0
- version/netapp e-series santricity os controller/11.60.3
- canonical/netapp solidfire & hci management node
- canonical/netapp manageability sdk
- canonical/netapp oncommand insight
- canonical/netapp oncommand workflow automation
- canonical/netapp plug-in for symantec netbackup
- canonical/netapp santricity smi-s provider firmware
- canonical/netapp snapcenter
- canonical/netapp solidfire & hci storage node
- canonical/netapp hci compute node
- canonical/netapp ef600a
- canonical/netapp ef600a firmware
- canonical/netapp a250 firmware
- vendor/tenable
- canonical/tenable log correlation engine
- canonical/tenable nessus
- vendor/siemens
- canonical/siemens sinec infrastructure network services
- vendor/nodejs
- canonical/node.js
- version/node.js/10.0.0
- version/node.js/10.12.0
- version/node.js/10.13.0
- version/node.js/12.0.0
- version/node.js/12.12.0
- version/node.js/12.13.0
- version/node.js/14.0.0
- version/node.js/14.14.0
- version/node.js/14.15.0
- version/node.js/15.0.0