CVE-2016-0701

The DHcheckpubkey function in crypto/dh/dhcheck.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose an inappropriate number, as demonstrated by a number in an X9.42 file.

References

Affected packages

Git / github.com/openssl/openssl

Affected ranges

Type

GIT

Repo

https://github.com/openssl/openssl

Events

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Introduced

Last affected

94f416601754dbe65e287f8e1eca01fa32f74a7a

Introduced

Last affected

2f63ad1c6daa61614f3d58de0889bf68e9f75853

Introduced

Last affected

2c5db8dac3a06fe5b2c889838a606138ee3542ed

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Introduced

Last affected

e818b74be2170fbe957a07b0da4401c2b694b3b8

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2-beta1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2-beta2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2-beta3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2a"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2b"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2c"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2d"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2e"
        }
    ]
}

Affected versions

Other

BEFORE_engine

OpenSSL_0_9_1c

OpenSSL_0_9_2b

OpenSSL_0_9_3

OpenSSL_0_9_3a

OpenSSL_0_9_3beta2

OpenSSL_0_9_4

OpenSSL_0_9_5a

OpenSSL_0_9_5a-beta1

OpenSSL_0_9_5a-beta2

OpenSSL_0_9_5beta1

OpenSSL_0_9_5beta2

OpenSSL_0_9_6-beta3

OpenSSL_1_0_0

OpenSSL_1_0_0-beta1

OpenSSL_1_0_0-beta2

OpenSSL_1_0_0-beta3

OpenSSL_1_0_0-beta4

OpenSSL_1_0_0-beta5

OpenSSL_1_0_0a

OpenSSL_1_0_1

OpenSSL_1_0_1-beta1

OpenSSL_1_0_1-beta2

OpenSSL_1_0_1-beta3

OpenSSL_1_0_2

OpenSSL_1_0_2-beta1

OpenSSL_1_0_2-beta2

OpenSSL_1_0_2-beta3

OpenSSL_1_0_2-post-auto-reformat

OpenSSL_1_0_2-post-reformat

OpenSSL_1_0_2-pre-auto-reformat

OpenSSL_1_0_2-pre-reformat

OpenSSL_1_0_2a

OpenSSL_1_0_2b

OpenSSL_1_0_2c

OpenSSL_1_0_2d

OpenSSL_1_0_2e

OpenSSL_1_0_2f

OpenSSL_1_0_2g

OpenSSL_1_0_2h

OpenSSL_1_0_2i

OpenSSL_1_0_2j

OpenSSL_1_0_2k

OpenSSL_1_0_2l

OpenSSL_1_0_2m

OpenSSL_1_0_2n

OpenSSL_1_0_2o

OpenSSL_1_0_2p

OpenSSL_1_0_2q

OpenSSL_1_0_2r

OpenSSL_1_0_2s

OpenSSL_1_0_2t

OpenSSL_1_0_2u

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-0701.json"