The ssl3getcertverify function in s3srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libcrypto1.0.0-udeb" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libssl-dev" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libssl-doc" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libssl1.0.0" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libssl1.0.0-dbg" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "libssl1.0.0-udeb" }, { "binary_version": "1.0.1f-1ubuntu2.8", "binary_name": "openssl" } ] }