[Full-Disclosure] GLSA: openssl (200303-20)

From: Daniel Ahlberg (aliz@gentoo.org)
Date: 03/24/03

Next message: Daniel Ahlberg: "[Full-Disclosure] GLSA: bitchx (200303-21)"

Previous message: Georgi Guninski: "Re: [Full-Disclosure] Microsoft runs early April Fools ad"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Daniel Ahlberg <aliz@gentoo.org>
To: full-disclosure@lists.netsys.com
Date: Mon, 24 Mar 2003 12:51:19 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - ---------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200303-20
- - ---------------------------------------------------------------------

          PACKAGE : openssl
          SUMMARY : Klima-Pokorny-Rosa attack
             DATE : 2003-03-24 11:51 UTC
          EXPLOIT : remote
VERSIONS AFFECTED : <0.9.6i-r2
    FIXED VERSION : >=0.9.6i-r2
              CVE : CAN-2003-0131

- - ---------------------------------------------------------------------

- From advisory:

"Czech cryptologists Vlastimil Klima, Ondrej Pokorny, and Tomas Rosa
have come up with an extension of the "Bleichenbacher attack" on RSA
with PKCS #1 v1.5 padding as used in SSL 3.0 and TLS 1.0. Their
attack requires the attacker to open millions of SSL/TLS connections
to the server under attack; the server's behaviour when faced with
specially made-up RSA ciphertexts can reveal information that in
effect allows the attacker to perform a single RSA private key
operation on a ciphertext of its choice using the server's RSA key.
Note that the server's RSA key is not compromised in this attack."

Read the full advisory at:
http://www.openssl.org/news/secadv_20030319.txt

SOLUTION

It is recommended that all Gentoo Linux users who are running
dev-libs/openssl upgrade to openssl-0.9.6i-r2 as follows:

emerge sync
emerge openssl
emerge clean

- - ---------------------------------------------------------------------
aliz@gentoo.org - GnuPG key is available at http://cvs.gentoo.org/~aliz
- - ---------------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+fvEtfT7nyhUpoZMRAjGBAJ9fkr/E5rMWv7Sp1YBg+3rRNqbS6wCglHh8
XW2wBWHA0/W3NXOz+ONEFTg=
=l0Nr
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Daniel Ahlberg: "[Full-Disclosure] GLSA: bitchx (200303-21)"

Previous message: Georgi Guninski: "Re: [Full-Disclosure] Microsoft runs early April Fools ad"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

GLSA: openssl (200303-20)
... have come up with an extension of the "Bleichenbacher attack" on RSA ... Read the full advisory at: ... It is recommended that all Gentoo Linux users who are running ...
(Bugtraq)
FreeBSD Security Advisory FreeBSD-SA-03:06.openssl
... FreeBSD includes software from the OpenSSL Project. ... an RSA timing attack, ...
(Bugtraq)
Re: Public key encryption
... >>messages as to break the hash algorithm. ... > it amounts to equivalence to the RSA problem. ... > anything that can forge PSS signatures can do arbitrary RSA ... > attack on weak padding is Bleichenbacher's "Million Message Attack", ...
(sci.crypt)
Re: Somebody is keep trying to ssh into my systems, how can I stop that?
... algorithms used in RSA. ... The RSA patent expired a couple years ... from someone who was shown to be wrong and is not man enough to admit his ... You believe HIM when he says your wrong, you attack ME when I ...
(comp.os.linux.security)
Re: [Full-disclosure] Universal Website Hijacking by Exploiting Firewall Content Filtering Featu
... That Bluecoat advisory was released on 29 September 2008. ... you should consider the possibility of the attack vector ... suggest that he did NOT inform the vendor before releasing the ... It's also interesting that the researcher released the advisory ...
(Full-Disclosure)