CVE-2019-1547

Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).

Published : 2019-09-10 17:15 Updated : 2019-09-12 16:15

1.9

CVSS Score More info

Score 1.9 / 10

Access vector LOCAL

A vulnerability exploitable with only local access requires the attacker to have either physical access to the vulnerable system or a local (shell) account. Examples of locally exploitable vulnerabilities are peripheral attacks such as Firewire/USB DMA attacks, and local privilege escalations (e.g., sudo).

Access complexity MEDIUM

The access conditions are somewhat specialized; the following are examples:

The attacking party is limited to a group of systems or users at some level of authorization, possibly untrusted.
Some information must be gathered before a successful attack can be launched.
The affected configuration is non-default, and is not commonly configured (e.g., a vulnerability present when a server performs user account authentication via a specific scheme, but not present for another authentication scheme).
The attack requires a small amount of social engineering that might occasionally fool cautious users (e.g., phishing attacks that modify a web browsers status bar to show a false link, having to be on someones buddy list before sending an IM exploit).

Authentication NONE

Authentication is not required to exploit the vulnerability.

Confidentiality impact PARTIAL

There is considerable informational disclosure. Access to some system files is possible, but the attacker does not have control over what is obtained, or the scope of the loss is constrained. An example is a vulnerability that divulges only certain tables in a database.

Integrity impact NONE

There is no impact to the integrity of the system.

Availability impact NONE

There is no impact to the availability of the system.

CPE (55)
Tree view

Vendor	Product	Version	URI
Openssl	Openssl	1.0.2	cpe:/a:openssl:openssl:1.0.2
Openssl	Openssl	1.0.2	cpe:/a:openssl:openssl:1.0.2:beta1
Openssl	Openssl	1.0.2	cpe:/a:openssl:openssl:1.0.2:beta2
Openssl	Openssl	1.0.2	cpe:/a:openssl:openssl:1.0.2:beta3
Openssl	Openssl	1.0.2a	cpe:/a:openssl:openssl:1.0.2a
Openssl	Openssl	1.0.2b	cpe:/a:openssl:openssl:1.0.2b
Openssl	Openssl	1.0.2c	cpe:/a:openssl:openssl:1.0.2c
Openssl	Openssl	1.0.2d	cpe:/a:openssl:openssl:1.0.2d
Openssl	Openssl	1.0.2e	cpe:/a:openssl:openssl:1.0.2e
Openssl	Openssl	1.0.2f	cpe:/a:openssl:openssl:1.0.2f
Openssl	Openssl	1.0.2g	cpe:/a:openssl:openssl:1.0.2g
Openssl	Openssl	1.0.2h	cpe:/a:openssl:openssl:1.0.2h
Openssl	Openssl	1.0.2i	cpe:/a:openssl:openssl:1.0.2i
Openssl	Openssl	1.0.2j	cpe:/a:openssl:openssl:1.0.2j
Openssl	Openssl	1.0.2k	cpe:/a:openssl:openssl:1.0.2k
Openssl	Openssl	1.0.2l	cpe:/a:openssl:openssl:1.0.2l
Openssl	Openssl	1.0.2m	cpe:/a:openssl:openssl:1.0.2m
Openssl	Openssl	1.0.2n	cpe:/a:openssl:openssl:1.0.2n
Openssl	Openssl	1.0.2o	cpe:/a:openssl:openssl:1.0.2o
Openssl	Openssl	1.0.2p	cpe:/a:openssl:openssl:1.0.2p
Openssl	Openssl	1.0.2q	cpe:/a:openssl:openssl:1.0.2q
Openssl	Openssl	1.0.2r	cpe:/a:openssl:openssl:1.0.2r
Openssl	Openssl	1.0.2s	cpe:/a:openssl:openssl:1.0.2s
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:-
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre1
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre2
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre3
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre4
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre5
Openssl	Openssl	1.1.0	cpe:/a:openssl:openssl:1.1.0:pre6
Openssl	Openssl	1.1.0a	cpe:/a:openssl:openssl:1.1.0a
Openssl	Openssl	1.1.0b	cpe:/a:openssl:openssl:1.1.0b
Openssl	Openssl	1.1.0c	cpe:/a:openssl:openssl:1.1.0c
Openssl	Openssl	1.1.0d	cpe:/a:openssl:openssl:1.1.0d
Openssl	Openssl	1.1.0e	cpe:/a:openssl:openssl:1.1.0e
Openssl	Openssl	1.1.0f	cpe:/a:openssl:openssl:1.1.0f
Openssl	Openssl	1.1.0g	cpe:/a:openssl:openssl:1.1.0g
Openssl	Openssl	1.1.0h	cpe:/a:openssl:openssl:1.1.0h
Openssl	Openssl	1.1.0i	cpe:/a:openssl:openssl:1.1.0i
Openssl	Openssl	1.1.0j	cpe:/a:openssl:openssl:1.1.0j
Openssl	Openssl	1.1.0k	cpe:/a:openssl:openssl:1.1.0k
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre1
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre2
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre3
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre4
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre5
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre6
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre7
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre8
Openssl	Openssl	1.1.1	cpe:/a:openssl:openssl:1.1.1:pre9
Openssl	Openssl	1.1.1a	cpe:/a:openssl:openssl:1.1.1a
Openssl	Openssl	1.1.1b	cpe:/a:openssl:openssl:1.1.1b
Openssl	Openssl	1.1.1c	cpe:/a:openssl:openssl:1.1.1c

Openssl (1) Search CVE
1. Openssl (36) Search CVE
  1. 1.0.2
  2. 1.0.2a
  3. 1.0.2b
  4. 1.0.2c
  5. 1.0.2d
  6. 1.0.2e
  7. 1.0.2f
  8. 1.0.2g
  9. 1.0.2h
  10. 1.0.2i
  11. 1.0.2j
  12. 1.0.2k
  13. 1.0.2l
  14. 1.0.2m
  15. 1.0.2n
  16. 1.0.2o
  17. 1.0.2p
  18. 1.0.2q
  19. 1.0.2r
  20. 1.0.2s
  21. 1.1.0
  22. 1.1.0a
  23. 1.1.0b
  24. 1.1.0c
  25. 1.1.0d
  26. 1.1.0e
  27. 1.1.0f
  28. 1.1.0g
  29. 1.1.0h
  30. 1.1.0i
  31. 1.1.0j
  32. 1.1.0k
  33. 1.1.1
  34. 1.1.1a
  35. 1.1.1b
  36. 1.1.1c

CWE

ID	Name	Description	Links
CWE-311	Missing Encryption of Sensitive Data	The software does not encrypt sensitive or critical information before storage or transmission.		CVE

References

Source	Link
CONFIRM	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46
CONFIRM	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8
CONFIRM	https://www.openssl.org/news/secadv/20190910.txt
CONFIRM	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a
BUGTRAQ	https://seclists.org/bugtraq/2019/Sep/25
MISC	https://arxiv.org/abs/1909.01785
MISC	http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html

History of changes

Date

Event

2019-09-12 16:15

References changed

1 added

MISC	http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html

2019-09-12 13:23

CPEs changed

55 added

cpe:/a:openssl:openssl:1.0.2 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2:beta1 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2:beta2 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2:beta3 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2a (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2b (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2c (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2d (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2e (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2f (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2g (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2h (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2i (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2j (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2k (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2l (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2m (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2n (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2o (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2p (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2q (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2r (Openssl / Openssl)
cpe:/a:openssl:openssl:1.0.2s (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:- (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre1 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre2 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre3 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre4 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre5 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0:pre6 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0a (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0b (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0c (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0d (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0e (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0f (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0g (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0h (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0i (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0j (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.0k (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre1 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre2 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre3 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre4 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre5 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre6 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre7 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre8 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1:pre9 (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1a (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1b (Openssl / Openssl)
cpe:/a:openssl:openssl:1.1.1c (Openssl / Openssl)

CVSS changed

New score : 1.9
No old score

References changed

2 added

BUGTRAQ	https://seclists.org/bugtraq/2019/Sep/25
MISC	https://arxiv.org/abs/1909.01785

4 changed

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46	UNKNOWN->VENDOR_ADVISORY
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8	UNKNOWN->VENDOR_ADVISORY
https://www.openssl.org/news/secadv/20190910.txt	UNKNOWN->VENDOR_ADVISORY
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a	UNKNOWN->VENDOR_ADVISORY

CWEs changed

Added : CWE-311

2019-09-10 17:35

CVE-2019-1547

Score 1.9 / 10

CWE

References

History of changes

New CVE