CVE-2018-0732

HIGH

OpenSSL 1.0.2-1.0.2o and 1.1.0-1.1.0h - Denial of Service via Large DH Prime in TLS Handshake

Title source: llm
STIX 2.1

Description

During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2-1.0.2o).

References (37)

Core 37
Core References
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/07/msg00043.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/104442
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4355
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:2552
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201811-03
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3692-2/
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:2553
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3505
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3692-1/
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3221
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2018/dsa-4348
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1041090
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:1297
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:1296
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:1543
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpuapr2020.html
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujan2021.html
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2018-14
Third Party Advisory x_refsource_confirm
https://securityadvisories.paloaltonetworks.com/Home/Detail/133
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2018-13
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2018-17
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2018-12
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20181105-0001/
Vendor Advisory x_refsource_confirm
https://www.openssl.org/news/secadv/20180612.txt
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20190118-0002/
Third Party Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-419820.pdf

Scores

CVSS v3 7.5
EPSS 0.7838
EPSS Percentile 99.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-320
Status published
Products (9)
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 16.04
canonical/ubuntu_linux 17.10
canonical/ubuntu_linux 18.04
debian/debian_linux 8.0
nodejs/node.js 6.0.0 - 6.8.1
nodejs/node.js 6.9.0 - 6.14.4
openssl/openssl 1.0.2 - 1.0.2o
Published Jun 12, 2018
Tracked Since Feb 18, 2026