CVE-2022-3786

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-3786

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3786.json

Aliases

Related

Published

2022-11-01T18:15:11Z

Modified

2023-12-06T01:02:31.170840Z

Details

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate verification despite failure to construct a path to a trusted issuer. An attacker can craft a malicious email address in a certificate to overflow an arbitrary number of bytes containing the `.' character (decimal 46) on the stack. This buffer overflow could result in a crash (causing a denial of service). In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

References

Affected packages

Alpine:v3.15 / openssl3

Package

Name: openssl3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

3.0.7-r0

Alpine:v3.16 / openssl3

Package

Name: openssl3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

3.0.7-r0

Alpine:v3.17 / nodejs

Package

Name: nodejs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

18.12.1-r0

Affected versions

4.*

4.4.3-r0

4.4.4-r0

4.4.5-r0

4.4.7-r0

4.5.0-r0

6.*

6.9.1-r0

6.9.1-r1

6.9.2-r0

6.9.4-r0

6.9.4-r1

6.9.5-r0

6.9.5-r1

6.10.0-r0

6.10.1-r0

6.10.3-r0

6.11.0-r0

6.11.1-r0

6.11.1-r1

6.11.1-r2

6.11.2-r0

6.11.3-r0

6.11.4-r0

6.11.5-r0

8.*

8.9.0-r0

8.9.1-r0

8.9.2-r0

8.9.3-r0

8.9.3-r1

8.9.4-r0

8.10.0-r0

8.11.0-r0

8.11.0-r1

8.11.1-r0

8.11.1-r1

8.11.1-r2

8.11.2-r0

8.11.3-r0

8.11.3-r1

8.11.3-r2

8.11.3-r3

8.11.4-r0

8.12.0-r0

10.*

10.13.0-r0

10.14.0-r0

10.14.1-r0

10.14.2-r0

10.15.1-r0

10.15.3-r0

10.16.0-r0

10.16.1-r0

10.16.2-r0

10.16.3-r0

12.*

12.13.0-r0

12.13.0-r1

12.13.1-r0

12.14.0-r0

12.14.1-r0

12.15.0-r0

12.15.0-r1

12.15.0-r2

12.16.2-r0

12.16.3-r0

12.16.3-r1

12.17.0-r0

12.18.0-r0

12.18.0-r1

12.18.0-r2

12.18.2-r0

12.18.3-r0

12.18.4-r0

12.19.0-r0

14.*

14.15.1-r0

14.15.3-r0

14.15.3-r1

14.15.3-r2

14.15.4-r0

14.15.5-r0

14.16.0-r0

14.16.0-r1

14.16.1-r0

14.16.1-r1

14.16.1-r2

14.17.0-r0

14.17.1-r0

14.17.2-r0

14.17.3-r0

14.17.4-r0

14.17.5-r0

14.17.6-r0

14.17.6-r1

14.18.0-r0

14.18.1-r0

14.18.1-r1

16.*

16.13.0-r0

16.13.1-r0

16.13.1-r1

16.13.2-r0

16.13.2-r1

16.14.2-r0

16.14.2-r1

16.15.0-r0

16.15.0-r1

16.16.0-r0

16.16.0-r1

16.17.0-r0

16.17.1-r0

16.18.0-r0

16.18.0-r1

18.*

18.12.0-r1

Alpine:v3.17 / openssl

Package

Name: openssl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

3.0.7-r0

Alpine:v3.18 / nodejs

Package

Name: nodejs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

18.12.1-r0

Affected versions

4.*

4.4.3-r0

4.4.4-r0

4.4.5-r0

4.4.7-r0

4.5.0-r0

6.*

6.9.1-r0

6.9.1-r1

6.9.2-r0

6.9.4-r0

6.9.4-r1

6.9.5-r0

6.9.5-r1

6.10.0-r0

6.10.1-r0

6.10.3-r0

6.11.0-r0

6.11.1-r0

6.11.1-r1

6.11.1-r2

6.11.2-r0

6.11.3-r0

6.11.4-r0

6.11.5-r0

8.*

8.9.0-r0

8.9.1-r0

8.9.2-r0

8.9.3-r0

8.9.3-r1

8.9.4-r0

8.10.0-r0

8.11.0-r0

8.11.0-r1

8.11.1-r0

8.11.1-r1

8.11.1-r2

8.11.2-r0

8.11.3-r0

8.11.3-r1

8.11.3-r2

8.11.3-r3

8.11.4-r0

8.12.0-r0

10.*

10.13.0-r0

10.14.0-r0

10.14.1-r0

10.14.2-r0

10.15.1-r0

10.15.3-r0

10.16.0-r0

10.16.1-r0

10.16.2-r0

10.16.3-r0

12.*

12.13.0-r0

12.13.0-r1

12.13.1-r0

12.14.0-r0

12.14.1-r0

12.15.0-r0

12.15.0-r1

12.15.0-r2

12.16.2-r0

12.16.3-r0

12.16.3-r1

12.17.0-r0

12.18.0-r0

12.18.0-r1

12.18.0-r2

12.18.2-r0

12.18.3-r0

12.18.4-r0

12.19.0-r0

14.*

14.15.1-r0

14.15.3-r0

14.15.3-r1

14.15.3-r2

14.15.4-r0

14.15.5-r0

14.16.0-r0

14.16.0-r1

14.16.1-r0

14.16.1-r1

14.16.1-r2

14.17.0-r0

14.17.1-r0

14.17.2-r0

14.17.3-r0

14.17.4-r0

14.17.5-r0

14.17.6-r0

14.17.6-r1

14.18.0-r0

14.18.1-r0

14.18.1-r1

16.*

16.13.0-r0

16.13.1-r0

16.13.1-r1

16.13.2-r0

16.13.2-r1

16.14.2-r0

16.14.2-r1

16.15.0-r0

16.15.0-r1

16.16.0-r0

16.16.0-r1

16.17.0-r0

16.17.1-r0

16.18.0-r0

16.18.0-r1

18.*

18.12.0-r0

Alpine:v3.18 / openssl

Package

Name: openssl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

3.0.7-r0

Git / github.com/nodejs/node

Affected ranges

Type: GIT
Repo: https://github.com/nodejs/node
Events: Introduced

6faf17cb45e27cb6feeff4a0da1513ea99a68b58

Introduced

49a77a5a996a49e8cb728eed42e55a7c1a9eef6e

Type: GIT
Repo: https://github.com/openssl/openssl
Events: Introduced

89cd17a031e022211684eb7eb41190cf1910f9fa

Fixed

19cc035b6c6f2283573d29c7ea7f7d675cf750ce

Affected versions

openssl-3.*

openssl-3.0.0

openssl-3.0.1

openssl-3.0.2

openssl-3.0.3

openssl-3.0.4

openssl-3.0.5

openssl-3.0.6

v10.*

v10.0.0

v10.1.0

v10.10.0

v10.11.0

v10.12.0

v10.13.0

v10.14.0

v10.14.1

v10.14.2

v10.15.0

v10.15.1

v10.15.2

v10.15.3

v10.16.0

v10.16.1

v10.16.2

v10.16.3

v10.17.0

v10.18.0

v10.18.1

v10.19.0

v10.2.0

v10.2.1

v10.20.0

v10.20.1

v10.21.0

v10.22.0

v10.22.1

v10.23.0

v10.23.1

v10.23.2

v10.23.3

v10.24.0

v10.24.1

v10.3.0

v10.4.0

v10.4.1

v10.5.0

v10.6.0

v10.7.0

v10.8.0

v10.9.0

v11.*

v11.0.0

v11.1.0

v11.10.0

v11.10.1

v11.11.0

v11.12.0

v11.13.0

v11.14.0

v11.15.0

v11.2.0

v11.3.0

v11.4.0

v11.5.0

v11.6.0

v11.7.0

v11.8.0

v11.9.0

v12.*

v12.0.0

v12.1.0

v12.10.0

v12.11.0

v12.11.1

v12.12.0

v12.13.0

v12.13.1

v12.14.0

v12.14.1

v12.15.0

v12.16.0

v12.16.1

v12.16.2

v12.16.3

v12.17.0

v12.18.0

v12.18.1

v12.18.2

v12.18.3

v12.18.4

v12.19.0

v12.19.1

v12.2.0

v12.20.0

v12.20.1

v12.20.2

v12.21.0

v12.22.0

v12.22.1

v12.22.10

v12.22.11

v12.22.12

v12.22.2

v12.22.3

v12.22.4

v12.22.5

v12.22.6

v12.22.7

v12.22.8

v12.22.9

v12.3.0

v12.3.1

v12.4.0

v12.5.0

v12.6.0

v12.7.0

v12.8.0

v12.8.1

v12.9.0

v12.9.1

v13.*

v13.0.0

v13.0.1

v13.1.0

v13.10.0

v13.10.1

v13.11.0

v13.12.0

v13.13.0

v13.14.0

v13.2.0

v13.3.0

v13.4.0

v13.5.0

v13.6.0

v13.7.0

v13.8.0

v13.9.0

v14.*

v14.0.0

v14.1.0

v14.10.0

v14.10.1

v14.11.0

v14.12.0

v14.13.0

v14.13.1

v14.14.0

v14.15.0

v14.15.1

v14.15.2

v14.15.3

v14.15.4

v14.15.5

v14.16.0

v14.16.1

v14.17.0

v14.17.1

v14.17.2

v14.17.3

v14.17.4

v14.17.5

v14.17.6

v14.18.0

v14.18.1

v14.18.2

v14.18.3

v14.19.0

v14.19.1

v14.19.2

v14.19.3

v14.2.0

v14.20.0

v14.20.1

v14.21.0

v14.21.1

v14.21.2

v14.21.3

v14.3.0

v14.4.0

v14.5.0

v14.6.0

v14.7.0

v14.8.0

v14.9.0

v15.*

v15.0.0

v15.0.1

v15.1.0

v15.10.0

v15.11.0

v15.12.0

v15.13.0

v15.14.0

v15.2.0

v15.2.1

v15.3.0

v15.4.0

v15.5.0

v15.5.1

v15.6.0

v15.7.0

v15.8.0

v15.9.0

v16.*

v16.0.0

v16.1.0

v16.10.0

v16.11.0

v16.11.1

v16.12.0

v16.13.0

v16.13.1

v16.13.2

v16.14.0

v16.14.1

v16.14.2

v16.15.0

v16.15.1

v16.16.0

v16.17.0

v16.17.1

v16.18.0

v16.18.1

v16.19.0

v16.19.1

v16.2.0

v16.20.0

v16.20.1

v16.20.2

v16.3.0

v16.4.0

v16.4.1

v16.4.2

v16.5.0

v16.6.0

v16.6.1

v16.6.2

v16.7.0

v16.8.0

v16.9.0

v16.9.1

v17.*

v17.0.0

v17.0.1

v17.1.0

v17.2.0

v17.3.0

v17.3.1

v17.4.0

v17.5.0

v17.6.0

v17.7.0

v17.7.1

v17.7.2

v17.8.0

v17.9.0

v17.9.1

v18.*

v18.0.0

v18.1.0

v18.10.0

v18.11.0

v18.12.0

v18.12.1

v18.13.0

v18.14.0

v18.14.1

v18.14.2

v18.15.0

v18.16.0

v18.16.1

v18.17.0

v18.17.1

v18.18.0

v18.18.1

v18.18.2

v18.2.0

v18.3.0

v18.4.0

v18.5.0

v18.6.0

v18.7.0

v18.8.0

v18.9.0

v18.9.1

v19.*

v19.0.0

v19.0.1

v19.1.0

v19.2.0

v19.3.0

v19.4.0

v19.5.0

v19.6.0

v19.6.1

v19.7.0

v19.8.0

v19.8.1

v19.9.0

v20.*

v20.0.0

v20.1.0

v20.10.0

v20.2.0

v20.3.0

v20.3.1

v20.4.0

v20.5.0

v20.5.1

v20.6.0

v20.6.1

v20.7.0

v20.8.0

v20.8.1

v20.9.0

v21.*

v21.0.0

v21.1.0

v21.2.0

v3.*

v3.0.0

v3.1.0

v3.2.0

v3.3.0

v3.3.1

v4.*

v4.0.0

v4.1.0

v4.1.1

v4.1.2

v4.2.0

v4.2.1

v4.2.2

v4.2.3

v4.2.4

v4.2.5

v4.2.6

v4.3.0

v4.3.1

v4.3.2

v4.4.0

v4.4.1

v4.4.2

v4.4.3

v4.4.4

v4.4.5

v4.4.6

v4.4.7

v4.5.0

v4.6.0

v4.6.1

v4.6.2

v4.7.0

v4.7.1

v4.7.2

v4.7.3

v4.8.0

v4.8.1

v4.8.2

v4.8.3

v4.8.4

v4.8.5

v4.8.6

v4.8.7

v4.9.0

v4.9.1

v5.*

v5.0.0

v5.1.0

v5.1.1

v5.10.0

v5.10.1

v5.11.1

v5.12.0

v5.2.0

v5.3.0

v5.4.0

v5.4.1

v5.5.0

v5.6.0

v5.7.0

v5.7.1

v5.8.0

v5.9.0

v5.9.1

v6.*

v6.0.0

v6.1.0

v6.10.0

v6.10.1

v6.10.2

v6.10.3

v6.11.0

v6.11.1

v6.11.2

v6.11.3

v6.11.4

v6.11.5

v6.12.0

v6.12.1

v6.12.2

v6.12.3

v6.13.0

v6.13.1

v6.14.0

v6.14.1

v6.14.2

v6.14.3

v6.14.4

v6.15.0

v6.15.1

v6.16.0

v6.17.0

v6.17.1

v6.2.0

v6.2.1

v6.2.2

v6.3.0

v6.3.1

v6.4.0

v6.5.0

v6.6.0

v6.7.0

v6.8.0

v6.8.1

v6.9.0

v6.9.1

v6.9.2

v6.9.3

v6.9.4

v6.9.5

v7.*

v7.0.0

v7.1.0

v7.10.0

v7.10.1

v7.2.0

v7.2.1

v7.3.0

v7.4.0

v7.5.0

v7.6.0

v7.7.0

v7.7.1

v7.7.2

v7.7.3

v7.7.4

v7.8.0

v7.9.0

v8.*

v8.0.0

v8.1.0

v8.1.1

v8.1.2

v8.1.3

v8.1.4

v8.10.0

v8.11.0

v8.11.1

v8.11.2

v8.11.3

v8.11.4

v8.12.0

v8.13.0

v8.14.0

v8.14.1

v8.15.0

v8.15.1

v8.16.0

v8.16.1

v8.16.2

v8.17.0

v8.2.0

v8.2.1

v8.3.0

v8.4.0

v8.5.0

v8.6.0

v8.7.0

v8.8.0

v8.8.1

v8.9.0

v8.9.1

v8.9.2

v8.9.3

v8.9.4

v9.*

v9.0.0

v9.1.0

v9.10.0

v9.10.1

v9.11.0

v9.11.1

v9.11.2

v9.2.0

v9.2.1

v9.3.0

v9.4.0

v9.5.0

v9.6.0

v9.6.1

v9.7.0

v9.7.1

v9.8.0

v9.9.0