Security Vulnerability in OpenSSL due to Improper Usage of Signature

Quicksearch

Disclaimer

The individual owning this blog works for Oracle in Germany. The opinions expressed here are his own, are not necessarily reviewed in advance by anyone but the individual author, and neither Oracle nor any other party necessarily agrees with them.

Navigation

< The NUBIT presentations revisted ... | links for 2009-02-22 >

Security Vulnerability in OpenSSL due to Improper Usage of Signature

Saturday, February 21. 2009

I want you to advise of a security vulnerability in OpenSSL. As Solaris contains OpenSSL (beginning with Solaris 10), Solaris 10 and Opensolaris are vulnerable to the CVE 2008-5077 :

An insufficient validation security vulnerability in OpenSSL may allow a malformed signature to be treated as a good signature rather than as an error. This issue affects the signature checks on DSA keys used with SSL/TLS. This vulnerability may allow a remote user who is in control of a rogue server or who can use a "man-in-the-middle attack" to masquerade as a valid, legitimate server using malformed SSL certificates.

This affects not only Solaris, it affects all systems using openssl 0.9.8i and earlier. You find further informations for Solaris in the SunAlert document #25082. For other operating systems consult the corresponding security bulletins of the distributor of your operating environment. At the moment there are two T-patches for this issue: T139500-02(Solaris 10 - SPARC) and T139501-02(x86). In Opensolaris the vulnerability is resolved in the Build 107.

Posted by Joerg Moellenkamp in English, Solaris at 19:54 | Comments (3) | Trackbacks (0)

Defined tags for this entry: opensll

, patches

, security

, solaris

, sunalert

Related entries by tags:

View as PDF: This entry | This month | Full blog

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

Ich will ja nicht unken, aber kommt diese Warnung nicht um ein paar Wochen zu spät?

#1 Carsten Aulbert on 2009-02-21 20:16 (Reply)

Ich habe die Warnung reingestellt, da die T-Patches verfügbar sind ...

#2 Joerg+M. (Homepage) on 2009-02-21 20:22 (Reply)

Why was Sun so slow to respond to this vulnerability? This one was found in 2008 and it was fixed in the major Linux distros a month ago. Sun didn't even notify Solaris users about the vulnerability until late January, when it was a month old.

#3 Brian on 2009-02-23 15:38 (Reply)

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above: Standard emoticons like :-) and ;-) are converted to images. Enclosing asterisks marks text as bold (word), underscore are made via _word_.
	Remember Information? Subscribe to this entry