CVE-2021-3449
- Source
- https://cve.org/CVERecord?id=CVE-2021-3449
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3449.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-3449
- Aliases
- Downstream
- Related
- Published
- 2021-03-25T15:15:13.450Z
- Modified
- 2026-03-15T22:45:47.442023Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension (where it was present in the initial ClientHello), but includes a signaturealgorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).
- References
-
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
- https://www.debian.org/security/2021/dsa-4875
- http://www.openwall.com/lists/oss-security/2021/03/28/3
- https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
- https://security.netapp.com/advisory/ntap-20210326-0006/
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
- https://www.openssl.org/news/secadv/20210325.txt
- http://www.openwall.com/lists/oss-security/2021/03/27/2
- http://www.openwall.com/lists/oss-security/2021/03/28/4
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
- https://www.tenable.com/security/tns-2021-10
- https://www.tenable.com/security/tns-2021-05
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
- https://security.gentoo.org/glsa/202103-03
- https://security.netapp.com/advisory/ntap-20240621-0006/
- https://kc.mcafee.com/corporate/index?page=content&id=SB10356
- https://security.netapp.com/advisory/ntap-20210513-0002/
- https://www.tenable.com/security/tns-2021-06
- https://www.tenable.com/security/tns-2021-09
- http://www.openwall.com/lists/oss-security/2021/03/27/1
- https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
Affected packages
Git / github.com/graalvm/graalvm-ce-builds
Affected ranges
- Type
- GIT
- Repo
- https://github.com/graalvm/graalvm-ce-builds
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "19.3.5" }, { "introduced": "0" }, { "last_affected": "20.3.1.2" }, { "introduced": "0" }, { "last_affected": "21.0.0.2" } ] }
- Type
- GIT
- Repo
- https://github.com/mysql/mysql-server
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroducedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.0.23" }, { "introduced": "0" }, { "last_affected": "5.7.33" }, { "introduced": "8.0.15" }, { "last_affected": "8.0.23" }, { "introduced": "0" }, { "last_affected": "8.0.23" } ] }
- Type
- GIT
- Repo
- https://github.com/nodejs/node
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroducedLast affectedIntroducedLast affectedIntroducedLast affectedIntroducedFixedIntroducedLast affectedIntroducedFixedIntroducedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "9.0" }, { "introduced": "0" }, { "last_affected": "10.0" }, { "introduced": "0" }, { "last_affected": "12.2-NA" }, { "introduced": "0" }, { "last_affected": "5.11.0" }, { "introduced": "0" }, { "last_affected": "5.11.1" }, { "introduced": "0" }, { "last_affected": "5.12.0" }, { "introduced": "0" }, { "last_affected": "21.2" }, { "introduced": "0" }, { "last_affected": "a9.4" }, { "introduced": "0" }, { "last_affected": "20.12" }, { "introduced": "0" }, { "last_affected": "5.6" }, { "introduced": "0" }, { "last_affected": "8.8" }, { "introduced": "0" }, { "fixed": "4.3" }, { "introduced": "0" }, { "fixed": "4.3" }, { "introduced": "0" }, { "fixed": "4.3" }, { "introduced": "0" }, { "fixed": "6.4" }, { "introduced": "0" }, { "fixed": "4.3" }, { "introduced": "0" }, { "fixed": "4.3" }, { "introduced": "0" }, { "fixed": "6.4" }, { "introduced": "0" }, { "fixed": "6.4" }, { "introduced": "0" }, { "fixed": "6.4" }, { "introduced": "0" }, { "fixed": "6.4" }, { "introduced": "2.2" }, { "fixed": "3.0" }, { "introduced": "2.0" }, { "fixed": "2.2" }, { "introduced": "0" }, { "last_affected": "1.0-NA" }, { "introduced": "0" }, { "last_affected": "1.0-sp1" }, { "introduced": "0" }, { "last_affected": "14.0-NA" }, { "introduced": "10.0.0" }, { "last_affected": "10.12.0" }, { "introduced": "10.13.0" }, { "last_affected": "10.24.0" }, { "introduced": "12.0.0" }, { "last_affected": "12.12.0" }, { "introduced": "12.13.0" }, { "fixed": "12.22.1" }, { "introduced": "14.0.0" }, { "last_affected": "14.14.0" }, { "introduced": "14.15.0" }, { "fixed": "14.16.1" }, { "introduced": "15.0.0" }, { "fixed": "15.14.0" } ] }
Affected versions
mysql-5.*
mysql-5.5.63
mysql-5.6.43
mysql-5.6.45
mysql-5.6.46
mysql-5.6.47
mysql-5.6.48
mysql-5.6.49
mysql-5.6.50
mysql-5.7.25
mysql-5.7.26
mysql-5.7.27
mysql-5.7.28
mysql-5.7.29
mysql-5.7.30
mysql-5.7.31
mysql-5.7.32
mysql-8.*
mysql-8.0.15
mysql-8.0.16
mysql-8.0.17
mysql-8.0.18
mysql-8.0.19
mysql-8.0.20
mysql-8.0.21
mysql-8.0.22
mysql-8.0.23
mysql-cluster-7.*
mysql-cluster-7.2.37
mysql-cluster-7.2.38
mysql-cluster-7.2.39
mysql-cluster-7.2.40
mysql-cluster-7.3.23
mysql-cluster-7.3.24
mysql-cluster-7.3.25
mysql-cluster-7.3.26
mysql-cluster-7.3.27
mysql-cluster-7.3.28
mysql-cluster-7.3.29
mysql-cluster-7.3.30
mysql-cluster-7.3.31
mysql-cluster-7.4.23
mysql-cluster-7.4.24
mysql-cluster-7.4.25
mysql-cluster-7.4.26
mysql-cluster-7.4.27
mysql-cluster-7.4.28
mysql-cluster-7.4.29
mysql-cluster-7.4.30
mysql-cluster-7.5.12
mysql-cluster-7.5.13
mysql-cluster-7.5.14
mysql-cluster-7.5.15
mysql-cluster-7.5.16
mysql-cluster-7.5.17
mysql-cluster-7.5.18
mysql-cluster-7.5.19
mysql-cluster-7.5.20
mysql-cluster-7.6.10
mysql-cluster-7.6.11
mysql-cluster-7.6.12
mysql-cluster-7.6.13
mysql-cluster-7.6.14
mysql-cluster-7.6.15
mysql-cluster-7.6.16
mysql-cluster-7.6.8
mysql-cluster-7.6.9
mysql-cluster-8.*
mysql-cluster-8.0.16
mysql-cluster-8.0.18
mysql-cluster-8.0.19
mysql-cluster-8.0.20
mysql-cluster-8.0.21
mysql-cluster-8.0.22
mysql-cluster-8.0.23
v2.*
v2.2.0
v2.2.1
v2.3.0
v2.3.1
v2.3.2
v2.3.3
v2.3.4
v2.4.0
v2.5.0
v3.*
v3.0.0
v4.*
v4.0.0
v4.1.0
v4.1.1
v4.1.2
v4.2.0
v4.2.1
v4.2.2
v4.2.3
v4.2.4
v4.2.5
v4.2.6
v6.*
v6.0.0
v6.1.0
v6.2.0
v6.2.1
v6.2.2
v6.3.0
v6.3.1
vm-19.*
vm-19.3.2
vm-19.3.2-pre
vm-19.3.3
vm-19.3.4
vm-19.3.5
vm-20.*
vm-20.0.1
vm-20.1.0
vm-20.2.0
vm-20.3.0
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3449.json"
vanir_signatures
[
{
"source": "https://github.com/openssl/openssl/commit/e04bd3433fd84e1861bf258ea37928d9845e6a86",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2021-3449-c377fa22",
"digest": {
"threshold": 0.9,
"line_hashes": [
"28170854778703993674264004058177114599",
"73132526844288570625317440636111911761",
"177405411499435185068645597737938634778",
"224809958623850711330610094965797758930",
"295554444428855106393106961197201359586"
]
},
"signature_type": "Line",
"target": {
"file": "include/openssl/opensslv.h"
}
}
]
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "12.2-p1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "12.2-p2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.9"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.13.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5.12.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5.13.0"
}
]
},
{
"events": [
{
"introduced": "5.13.0"
},
{
"last_affected": "5.17.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "34"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.2.19"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.2.10"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.1.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.2.19"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.2.10"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.1.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r80.40"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r81"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r80.40"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r81"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r80.40"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "r81"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "12.6.0.0.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "13.4.0.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "9.2.6.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.57"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.58"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.59"
}
]
},
{
"events": [
{
"introduced": "17.7"
},
{
"last_affected": "17.12"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "19.12"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "21.12"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "18.1.0.1.0"
}
]
},
{
"events": [
{
"introduced": "10.2.0.0"
},
{
"fixed": "10.2.1.0-17sv"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.1.0"
}
]
},
{
"events": [
{
"introduced": "6.2"
}
]
},
{
"events": [
{
"introduced": "6.2"
}
]
},
{
"events": [
{
"introduced": "4.1"
}
]
},
{
"events": [
{
"introduced": "4.1"
}
]
},
{
"events": [
{
"introduced": "6.2"
}
]
},
{
"events": [
{
"introduced": "4.1"
}
]
},
{
"events": [
{
"introduced": "4.1"
}
]
},
{
"events": [
{
"introduced": "2.0"
}
]
},
{
"events": [
{
"introduced": "6.5"
}
]
},
{
"events": [
{
"introduced": "2.0"
}
]
},
{
"events": [
{
"introduced": "1.1"
}
]
},
{
"events": [
{
"introduced": "3.1"
}
]
},
{
"events": [
{
"introduced": "3.1"
}
]
},
{
"events": [
{
"introduced": "3.1"
}
]
},
{
"events": [
{
"introduced": "3.1"
}
]
},
{
"events": [
{
"introduced": "3.1"
}
]
},
{
"events": [
{
"introduced": "2.1"
}
]
},
{
"events": [
{
"introduced": "2.1"
}
]
},
{
"events": [
{
"introduced": "1.0"
}
]
},
{
"events": [
{
"introduced": "9.1.0.7"
}
]
},
{
"events": [
{
"introduced": "2019"
}
]
},
{
"events": [
{
"introduced": "1.6.0.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "1.5-sp3_update_1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "14.0-sp1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "14.0-sp2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "14.0-sp2_update1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "14.0-sp2_update2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.0.1.1"
}
]
}
]