CVE-2019-1551

MEDIUM

x64_64 Montgomery squaring procedure - Buffer Overflow

Title source: llm
STIX 2.1

Description

There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t).

References (24)

Core 24
Core References
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Dec/39
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2019/dsa-4594
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Dec/46
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/202004-10
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4376-1/
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujul2020.html
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2019-09
Vendor Advisory x_refsource_confirm
https://www.openssl.org/news/secadv/20191206.txt
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20191210-0001/
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2020-03
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4504-1/
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujan2021.html
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2020-11
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2021/dsa-4855
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpuApr2021.html
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2021-10
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html

Scores

CVSS v3 5.3
EPSS 0.0280
EPSS Percentile 86.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-190
Status published
Products (16)
canonical/ubuntu_linux 16.04
canonical/ubuntu_linux 18.04
canonical/ubuntu_linux 19.10
debian/debian_linux 9.0
debian/debian_linux 10.0
fedoraproject/fedora 30
fedoraproject/fedora 31
fedoraproject/fedora 32
openssl/openssl 1.0.2 - 1.0.2t
opensuse/leap 15.1
... and 6 more
Published Dec 06, 2019
Tracked Since Feb 18, 2026