Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2017-3736

There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.

Source

The MITRE CVE dictionary describes this issue as:

There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.

Find out more about CVE-2017-3736 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v3 metrics

CVSS3 Base Score	5.9
CVSS3 Base Metrics	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector	Network
Attack Complexity	High
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality	High
Integrity Impact	None
Availability Impact	None

Red Hat Security Errata

Platform	Errata	Release Date
Red Hat JBoss Core Services 1	RHSA-2018:2187	2018-07-12
Red Hat JBoss Core Services on RHEL 6 Server	RHSA-2018:2186	2018-07-12
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.8.0-ibm)	RHSA-2018:2575	2018-08-28
Red Hat Enterprise Linux 7 (openssl)	RHSA-2018:0998	2018-04-10
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.8.0-ibm)	RHSA-2018:2568	2018-08-27
Red Hat JBoss Core Services on RHEL 7 Server	RHSA-2018:2185	2018-07-12
Red Hat Satellite 5.8 (RHEL v.6) (java-1.8.0-ibm)	RHSA-2018:2713	2018-09-17

Affected Packages State

Platform	Package	State
Red Hat JBoss Web Server 3	openssl	Not affected
Red Hat JBoss EWS 2	openssl	Will not fix
Red Hat JBoss EAP 6	openssl	Will not fix
Red Hat JBoss EAP 5	openssl	Not affected
Red Hat Enterprise Linux 7	openssl098e	Not affected
Red Hat Enterprise Linux 7	OVMF	Will not fix
Red Hat Enterprise Linux 6	openssl	Not affected
Red Hat Enterprise Linux 6	openssl098e	Not affected
Red Hat Enterprise Linux 5	openssl	Not affected
Red Hat Enterprise Linux 5	openssl097a	Not affected
RHEV Manager 3	mingw-virt-viewer	Will not fix

External References

https://www.openssl.org/news/secadv/20171102.txt

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-3736

CVSS v3 metrics

Red Hat Security Errata

Affected Packages State

External References

Vulmon Search

About

Products

Connect