A padding oracle has been found in OpenSSL versions before 1.0.2r. This issue does not impact OpenSSL 1.1.1 or 1.1.0. If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). AEAD ciphersuites are not impacted.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openssl openssl |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 18.10 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
netapp hyper converged infrastructure - |
||
netapp cloud backup - |
||
netapp santricity smi-s provider - |
||
netapp element software - |
||
netapp snapdrive - |
||
netapp snapcenter - |
||
netapp storage automation store - |
||
netapp ontap select deploy - |
||
netapp steelstore cloud integrated storage - |
||
netapp oncommand unified manager - |
||
netapp oncommand workflow automation - |
||
netapp storagegrid - |
||
netapp storagegrid |
||
netapp oncommand insight - |
||
netapp ontap select deploy administration utility - |
||
netapp service processor - |
||
netapp smi-s provider - |
||
netapp clustered data ontap antivirus connector - |
||
netapp active iq unified manager |
||
netapp solidfire - |
||
netapp hci management node - |
||
netapp snapprotect - |
||
netapp hci compute node - |
||
netapp oncommand unified manager core package - |
||
netapp active iq unified manager - |
||
netapp altavault - |
||
f5 traffix signaling delivery controller |
||
f5 traffix signaling delivery controller 4.4.0 |
||
f5 big-iq centralized management |
||
f5 big-ip local traffic manager |
||
f5 big-ip advanced firewall manager |
||
f5 big-ip application acceleration manager |
||
f5 big-ip analytics |
||
f5 big-ip access policy manager |
||
f5 big-ip application security manager |
||
f5 big-ip edge gateway |
||
f5 big-ip fraud protection service |
||
f5 big-ip global traffic manager |
||
f5 big-ip link controller |
||
f5 big-ip policy enforcement manager |
||
f5 big-ip webaccelerator |
||
f5 big-ip domain name system |
||
tenable nessus |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
opensuse leap 15.1 |
||
netapp cn1610_firmware - |
||
netapp a320_firmware - |
||
netapp c190_firmware - |
||
netapp a220_firmware - |
||
netapp fas2720_firmware - |
||
netapp fas2750_firmware - |
||
netapp a800_firmware - |
||
fedoraproject fedora 29 |
||
fedoraproject fedora 30 |
||
fedoraproject fedora 31 |
||
mcafee data exchange layer |
||
mcafee agent |
||
mcafee threat intelligence exchange server |
||
mcafee web gateway |
||
redhat jboss_enterprise_web_server 5.0.0 |
||
redhat virtualization 4.0 |
||
redhat virtualization_host 4.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
oracle jd edwards enterpriseone tools 9.2 |
||
oracle api gateway 11.1.2.4.0 |
||
oracle business intelligence 11.1.1.9.0 |
||
oracle peoplesoft enterprise peopletools 8.55 |
||
oracle peoplesoft enterprise peopletools 8.56 |
||
oracle business intelligence 12.2.1.3.0 |
||
oracle enterprise manager ops center 12.3.3 |
||
oracle peoplesoft enterprise peopletools 8.57 |
||
oracle secure global desktop 5.4 |
||
oracle mysql |
||
oracle communications session border controller 8.1.0 |
||
oracle communications session border controller 8.0.0 |
||
oracle jd edwards world security a9.3 |
||
oracle jd edwards world security a9.4 |
||
oracle business intelligence 12.2.1.4.0 |
||
oracle enterprise manager base platform 13.2.0.0.0 |
||
oracle enterprise manager base platform 12.1.0.5.0 |
||
oracle enterprise manager base platform 13.3.0.0.0 |
||
oracle enterprise manager ops center 12.4.0 |
||
oracle services tools bundle 19.2 |
||
oracle communications diameter signaling router 8.0.0 |
||
oracle communications diameter signaling router 8.1 |
||
oracle communications diameter signaling router 8.2 |
||
oracle communications diameter signaling router 8.3 |
||
oracle communications session border controller 8.3 |
||
oracle communications performance intelligence center 10.4.0.2 |
||
oracle communications session border controller 8.2 |
||
oracle mysql enterprise monitor |
||
oracle jd edwards world security a9.3.1 |
||
oracle communications session router 7.4 |
||
oracle communications session router 8.0 |
||
oracle communications session router 8.1 |
||
oracle endeca server 7.7.0 |
||
oracle mysql workbench |
||
oracle communications session router 8.2 |
||
oracle communications session router 8.3 |
||
oracle communications session border controller 7.4 |
||
oracle communications diameter signaling router 8.4 |
||
oracle communications unified session manager 7.3.5 |
||
oracle communications unified session manager 8.2.5 |
||
paloaltonetworks pan-os |
||
nodejs node.js |