Computer Security
[EN] securityvulns.ru no-pyccku


OpenSSL / ntp / bind / boinc certificate validation cryptographic vulnerabilities
updated since 09.01.2009
Published:10.02.2009
Source:
SecurityVulns ID:9564
Type:library
Threat Level:
7/10
Description:Multiple vulnerabilities in SSL/TLS DSA/ECDSA certificate chain validations.
Affected:OPENSSL : OpenSSL 0.9
 BIND : bind 9.3
 BIND : bind 9.4
 NTP : ntp 4.2
 LASSO : lasso 2.2
 BOINC : boinc 5.4
CVE:CVE-2009-0126 (The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.)
 CVE-2009-0050 (Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.)
 CVE-2009-0025 (BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.)
 CVE-2009-0021 (NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.)
 CVE-2008-5077 (OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1718-1] New boinc packages fix validation bypass (10.02.2009)
 documentDEBIAN, [SECURITY] [DSA 1700-1] New lasso packages fix validation bypass (14.01.2009)
 documentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-09:02.openssl (09.01.2009)
 documentWill Drewry, [oCERT-2008-016] Multiple OpenSSL signature verification API misuses (09.01.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod