CVE-2017-3735
- Source
- https://cve.org/CVERecord?id=CVE-2017-3735
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-3735.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-3735
- Downstream
- Related
- Published
- 2017-08-28T19:29:01.353Z
- Modified
- 2026-03-15T22:18:00.388177Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.
- References
-
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.tenable.com/security/tns-2017-15
- https://lists.debian.org/debian-lts-announce/2017/11/msg00011.html
- https://usn.ubuntu.com/3611-2/
- https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
- https://support.apple.com/HT208331
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
- https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
- http://www.securitytracker.com/id/1039726
- https://access.redhat.com/errata/RHSA-2018:3221
- https://access.redhat.com/errata/RHSA-2018:3505
- https://security.gentoo.org/glsa/201712-03
- https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/100515
- https://www.debian.org/security/2017/dsa-4017
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
- https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc
- https://www.debian.org/security/2017/dsa-4018
- https://www.openssl.org/news/secadv/20171102.txt
- https://security.netapp.com/advisory/ntap-20170927-0001/
- https://www.tenable.com/security/tns-2017-14
- https://security.netapp.com/advisory/ntap-20171107-0002/
- https://github.com/openssl/openssl/commit/068b963bb7afc57f5bdd723de0dd15e7795d5822
- https://www.openssl.org/news/secadv/20170828.txt
Affected packages
Git / github.com/openssl/openssl
Affected ranges
- Type
- GIT
- Repo
- https://github.com/openssl/openssl
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "0.9.7j" }, { "introduced": "0" }, { "last_affected": "0.9.7k" }, { "introduced": "0" }, { "last_affected": "0.9.7l" }, { "introduced": "0" }, { "last_affected": "0.9.7m" }, { "introduced": "0" }, { "last_affected": "0.9.8" }, { "introduced": "0" }, { "last_affected": "0.9.8a" }, { "introduced": "0" }, { "last_affected": "0.9.8b" }, { "introduced": "0" }, { "last_affected": "0.9.8c" }, { "introduced": "0" }, { "last_affected": "0.9.8d" }, { "introduced": "0" }, { "last_affected": "0.9.8e" }, { "introduced": "0" }, { "last_affected": "0.9.8f" }, { "introduced": "0" }, { "last_affected": "0.9.8g" }, { "introduced": "0" }, { "last_affected": "0.9.8h" }, { "introduced": "0" }, { "last_affected": "0.9.8i" }, { "introduced": "0" }, { "last_affected": "0.9.8j" }, { "introduced": "0" }, { "last_affected": "0.9.8k" }, { "introduced": "0" }, { "last_affected": "0.9.8l" }, { "introduced": "0" }, { "last_affected": "0.9.8m" }, { "introduced": "0" }, { "last_affected": "0.9.8m-beta1" }, { "introduced": "0" }, { "last_affected": "0.9.8n" }, { "introduced": "0" }, { "last_affected": "0.9.8o" }, { "introduced": "0" }, { "last_affected": "0.9.8p" }, { "introduced": "0" }, { "last_affected": "0.9.8q" }, { "introduced": "0" }, { "last_affected": "0.9.8r" }, { "introduced": "0" }, { "last_affected": "0.9.8s" }, { "introduced": "0" }, { "last_affected": "0.9.8t" }, { "introduced": "0" }, { "last_affected": "0.9.8u" }, { "introduced": "0" }, { "last_affected": "0.9.8v" }, { "introduced": "0" }, { "last_affected": "0.9.8w" }, { "introduced": "0" }, { "last_affected": "0.9.8x" }, { "introduced": "0" }, { "last_affected": "0.9.8y" }, { "introduced": "0" }, { "last_affected": "0.9.8z" }, { "introduced": "0" }, { "last_affected": "0.9.8za" }, { "introduced": "0" }, { "last_affected": "0.9.8zb" }, { "introduced": "0" }, { "last_affected": "0.9.8zc" }, { "introduced": "0" }, { "last_affected": "0.9.8ze" }, { "introduced": "0" }, { "last_affected": "0.9.8zg" }, { "introduced": "0" }, { "last_affected": "1.0.0" }, { "introduced": "0" }, { "last_affected": "1.0.0-beta1" }, { "introduced": "0" }, { "last_affected": "1.0.0-beta2" }, { "introduced": "0" }, { "last_affected": "1.0.0-beta3" }, { "introduced": "0" }, { "last_affected": "1.0.0-beta4" }, { "introduced": "0" }, { "last_affected": "1.0.0-beta5" }, { "introduced": "0" }, { "last_affected": "1.0.0a" }, { "introduced": "0" }, { "last_affected": "1.0.0b" }, { "introduced": "0" }, { "last_affected": "1.0.0c" }, { "introduced": "0" }, { "last_affected": "1.0.0d" }, { "introduced": "0" }, { "last_affected": "1.0.0e" }, { "introduced": "0" }, { "last_affected": "1.0.0f" }, { "introduced": "0" }, { "last_affected": "1.0.0g" }, { "introduced": "0" }, { "last_affected": "1.0.0h" }, { "introduced": "0" }, { "last_affected": "1.0.0i" }, { "introduced": "0" }, { "last_affected": "1.0.0j" }, { "introduced": "0" }, { "last_affected": "1.0.0k" }, { "introduced": "0" }, { "last_affected": "1.0.0l" }, { "introduced": "0" }, { "last_affected": "1.0.0m" }, { "introduced": "0" }, { "last_affected": "1.0.0n" }, { "introduced": "0" }, { "last_affected": "1.0.0o" }, { "introduced": "0" }, { "last_affected": "1.0.0p" }, { "introduced": "0" }, { "last_affected": "1.0.0q" }, { "introduced": "0" }, { "last_affected": "1.0.0r" }, { "introduced": "0" }, { "last_affected": "1.0.0s" }, { "introduced": "0" }, { "last_affected": "1.0.1" }, { "introduced": "0" }, { "last_affected": "1.0.1-beta1" }, { "introduced": "0" }, { "last_affected": "1.0.1-beta2" }, { "introduced": "0" }, { "last_affected": "1.0.1-beta3" }, { "introduced": "0" }, { "last_affected": "1.0.1a" }, { "introduced": "0" }, { "last_affected": "1.0.1b" }, { "introduced": "0" }, { "last_affected": "1.0.1c" }, { "introduced": "0" }, { "last_affected": "1.0.1d" }, { "introduced": "0" }, { "last_affected": "1.0.1e" }, { "introduced": "0" }, { "last_affected": "1.0.1f" }, { "introduced": "0" }, { "last_affected": "1.0.1g" }, { "introduced": "0" }, { "last_affected": "1.0.1h" }, { "introduced": "0" }, { "last_affected": "1.0.1i" }, { "introduced": "0" }, { "last_affected": "1.0.1j" }, { "introduced": "0" }, { "last_affected": "1.0.1k" }, { "introduced": "0" }, { "last_affected": "1.0.1l" }, { "introduced": "0" }, { "last_affected": "1.0.2" }, { "introduced": "0" }, { "last_affected": "1.0.2-beta1" }, { "introduced": "0" }, { "last_affected": "1.0.2-beta2" }, { "introduced": "0" }, { "last_affected": "1.0.2-beta3" }, { "introduced": "0" }, { "last_affected": "1.0.2a" }, { "introduced": "0" }, { "last_affected": "1.0.2b" }, { "introduced": "0" }, { "last_affected": "1.0.2c" }, { "introduced": "0" }, { "last_affected": "1.0.2d" }, { "introduced": "0" }, { "last_affected": "1.0.2e" }, { "introduced": "0" }, { "last_affected": "1.0.2f" }, { "introduced": "0" }, { "last_affected": "1.0.2h" }, { "introduced": "0" }, { "last_affected": "1.0.2i" }, { "introduced": "0" }, { "last_affected": "1.0.2j" }, { "introduced": "0" }, { "last_affected": "1.0.2k" }, { "introduced": "0" }, { "last_affected": "1.0.2l" }, { "introduced": "0" }, { "last_affected": "1.1.0" }, { "introduced": "0" }, { "last_affected": "1.1.0a" }, { "introduced": "0" }, { "last_affected": "1.1.0b" }, { "introduced": "0" }, { "last_affected": "1.1.0c" }, { "introduced": "0" }, { "last_affected": "1.1.0d" }, { "introduced": "0" }, { "last_affected": "1.1.0e" }, { "introduced": "0" }, { "last_affected": "1.1.0f" } ] }
Affected versions
Other
BEFORE_engine
OpenSSL_0_9_1c
OpenSSL_0_9_2b
OpenSSL_0_9_3
OpenSSL_0_9_3a
OpenSSL_0_9_3beta2
OpenSSL_0_9_4
OpenSSL_0_9_5a
OpenSSL_0_9_5a-beta1
OpenSSL_0_9_5a-beta2
OpenSSL_0_9_5beta1
OpenSSL_0_9_5beta2
OpenSSL_0_9_6-beta3
OpenSSL_0_9_8
OpenSSL_0_9_8-beta1
OpenSSL_0_9_8-beta2
OpenSSL_0_9_8-beta4
OpenSSL_0_9_8-beta5
OpenSSL_0_9_8-beta6
OpenSSL_0_9_8-post-auto-reformat
OpenSSL_0_9_8-post-reformat
OpenSSL_0_9_8-pre-auto-reformat
OpenSSL_0_9_8-pre-reformat
OpenSSL_0_9_8a
OpenSSL_0_9_8b
OpenSSL_0_9_8c
OpenSSL_0_9_8d
OpenSSL_0_9_8e
OpenSSL_0_9_8h
OpenSSL_0_9_8i
OpenSSL_0_9_8j
OpenSSL_0_9_8m
OpenSSL_0_9_8m-beta1
OpenSSL_0_9_8n
OpenSSL_0_9_8o
OpenSSL_0_9_8p
OpenSSL_0_9_8q
OpenSSL_0_9_8r
OpenSSL_0_9_8s
OpenSSL_0_9_8t
OpenSSL_0_9_8u
OpenSSL_0_9_8v
OpenSSL_0_9_8w
OpenSSL_0_9_8x
OpenSSL_0_9_8y
OpenSSL_0_9_8za
OpenSSL_0_9_8zb
OpenSSL_0_9_8zc
OpenSSL_0_9_8zd
OpenSSL_0_9_8ze
OpenSSL_0_9_8zf
OpenSSL_0_9_8zg
OpenSSL_0_9_8zh
OpenSSL_1_0_0
OpenSSL_1_0_0-beta1
OpenSSL_1_0_0-beta2
OpenSSL_1_0_0-beta3
OpenSSL_1_0_0-beta4
OpenSSL_1_0_0-beta5
OpenSSL_1_0_0-post-auto-reformat
OpenSSL_1_0_0-post-reformat
OpenSSL_1_0_0-pre-auto-reformat
OpenSSL_1_0_0-pre-reformat
OpenSSL_1_0_0a
OpenSSL_1_0_0b
OpenSSL_1_0_0c
OpenSSL_1_0_0d
OpenSSL_1_0_0e
OpenSSL_1_0_0f
OpenSSL_1_0_0g
OpenSSL_1_0_0h
OpenSSL_1_0_0i
OpenSSL_1_0_0j
OpenSSL_1_0_0k
OpenSSL_1_0_0l
OpenSSL_1_0_0m
OpenSSL_1_0_0n
OpenSSL_1_0_0o
OpenSSL_1_0_0p
OpenSSL_1_0_0q
OpenSSL_1_0_0r
OpenSSL_1_0_0s
OpenSSL_1_0_0t
OpenSSL_1_1_0
OpenSSL_1_1_0-pre1
OpenSSL_1_1_0-pre2
OpenSSL_1_1_0-pre3
OpenSSL_1_1_0-pre4
OpenSSL_1_1_0-pre5
OpenSSL_1_1_0-pre6
OpenSSL_1_1_0a
OpenSSL_1_1_0b
OpenSSL_1_1_0c
OpenSSL_1_1_0d
OpenSSL_1_1_0e
OpenSSL_1_1_0f
master-post-auto-reformat
master-post-reformat
master-pre-auto-reformat
master-pre-reformat
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.0"
}
]
}
]
vanir_signatures
[
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "crypto/x509v3/v3_addr.c",
"function": "X509v3_addr_get_afi"
},
"id": "CVE-2017-3735-2142274c",
"deprecated": false,
"source": "https://github.com/openssl/openssl/commit/068b963bb7afc57f5bdd723de0dd15e7795d5822",
"digest": {
"function_hash": "208379985860684619268173937024277364981",
"length": 257.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "crypto/x509v3/v3_addr.c"
},
"id": "CVE-2017-3735-9d266ab3",
"deprecated": false,
"source": "https://github.com/openssl/openssl/commit/068b963bb7afc57f5bdd723de0dd15e7795d5822",
"digest": {
"line_hashes": [
"7845397449413559425215778482047677846",
"207653610646830533992290501458377593330",
"174509823600981861032748115460464239886",
"192650640657398900158594109941984932058",
"211215256581144995289213155903521295219",
"192968340343454854111328050829945119022",
"279966053529557468968767575759043715403"
],
"threshold": 0.9
}
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-3735.json"