{ "threat_severity" : "Moderate", "public_date" : "2016-05-03T00:00:00Z", "bugzilla" : { "description" : "openssl: EVP_EncodeUpdate overflow", "id" : "1331441", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1331441" }, "cvss" : { "cvss_base_score" : "5.1", "cvss_scoring_vector" : "AV:N/AC:H/Au:N/C:P/I:P/A:P", "status" : "verified" }, "cvss3" : { "cvss3_base_score" : "5.6", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "status" : "verified" }, "cwe" : "CWE-190->CWE-122", "details" : [ "Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.", "An integer overflow flaw, leading to a buffer overflow, was found in the way the EVP_EncodeUpdate() function of OpenSSL parsed very large amounts of input data. A remote attacker could use this flaw to crash an application using OpenSSL or, possibly, execute arbitrary code with the permissions of the user running that application." ], "acknowledgement" : "Red Hat would like to thank the OpenSSL project for reporting this issue. Upstream acknowledges Guido Vranken as the original reporter.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2016-05-10T00:00:00Z", "advisory" : "RHSA-2016:0996", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "openssl-0:1.0.1e-48.el6_8.1" }, { "product_name" : "Red Hat Enterprise Linux 6.7 Extended Update Support", "release_date" : "2016-10-18T00:00:00Z", "advisory" : "RHSA-2016:2073", "cpe" : "cpe:/o:redhat:rhel_eus:6.7", "package" : "openssl-0:1.0.1e-42.el6_7.5" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2016-05-09T00:00:00Z", "advisory" : "RHSA-2016:0722", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "openssl-1:1.0.1e-51.el7_2.5" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 6.4", "release_date" : "2016-10-12T00:00:00Z", "advisory" : "RHSA-2016:2056", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:6.4", "package" : "openssl" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "httpd-0:2.2.26-54.ep6.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "jbcs-httpd24-0:1-3.jbcs.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "jbcs-httpd24-openssl-1:1.0.2h-4.jbcs.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "mod_cluster-0:1.2.13-1.Final_redhat_1.1.ep6.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "mod_cluster-native-0:1.2.13-3.Final_redhat_2.ep6.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "mod_jk-0:1.2.41-2.redhat_3.ep6.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 6", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1649", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el6", "package" : "tomcat-native-0:1.1.34-5.redhat_1.ep6.el6" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "httpd22-0:2.2.26-56.ep6.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "jbcs-httpd24-0:1-3.jbcs.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "jbcs-httpd24-openssl-1:1.0.2h-4.jbcs.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "mod_cluster-0:1.2.13-1.Final_redhat_1.1.ep6.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "mod_cluster-native-0:1.2.13-3.Final_redhat_2.ep6.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "mod_jk-0:1.2.41-2.redhat_3.ep6.el7" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 2 for RHEL 7", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1648", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2::el7", "package" : "tomcat-native-0:1.1.34-5.redhat_1.ep6.el7" }, { "product_name" : "Red Hat JBoss Web Server 2.1", "release_date" : "2016-08-22T00:00:00Z", "advisory" : "RHSA-2016:1650", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:2.1", "package" : "openssl" }, { "product_name" : "Text-Only JBCS", "release_date" : "2016-12-15T00:00:00Z", "advisory" : "RHSA-2016:2957", "cpe" : "cpe:/a:redhat:jboss_core_services:1" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 4", "fix_state" : "Will not fix", "package_name" : "openssl", "cpe" : "cpe:/o:redhat:enterprise_linux:4" }, { "product_name" : "Red Hat Enterprise Linux 4", "fix_state" : "Will not fix", "package_name" : "openssl096b", "cpe" : "cpe:/o:redhat:enterprise_linux:4" }, { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Will not fix", "package_name" : "openssl", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Will not fix", "package_name" : "openssl097a", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Will not fix", "package_name" : "openssl098e", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Will not fix", "package_name" : "openssl098e", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat JBoss Core Services", "fix_state" : "Affected", "package_name" : "openssl", "cpe" : "cpe:/a:redhat:jboss_core_services:1" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 5", "fix_state" : "Not affected", "package_name" : "openssl", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:5" }, { "product_name" : "Red Hat JBoss Enterprise Web Server 3", "fix_state" : "Affected", "package_name" : "openssl", "cpe" : "cpe:/a:redhat:jboss_enterprise_web_server:3" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2016-2105\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-2105\nhttps://openssl.org/news/secadv/20160503.txt" ], "name" : "CVE-2016-2105", "csaw" : false }