Vulnerability CVE-2019-1563: Information
Description
In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).
Severity: LOW (3.7) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| openssl1.1 | sisyphus | 1.1.1d-alt1 | 1.1.1w-alt1 | ALT-PU-2019-2752-1 | 237852 | Fixed |
| openssl1.1 | p10 | 1.1.1d-alt1 | 1.1.1w-alt0.p10.1 | ALT-PU-2019-2752-1 | 237852 | Fixed |
| openssl1.1 | p9 | 1.1.1d-alt1.1 | 1.1.1u-alt1 | ALT-PU-2019-2771-1 | 237853 | Fixed |
| openssl1.1 | c10f1 | 1.1.1d-alt1 | 1.1.1w-alt0.p10.1 | ALT-PU-2019-2752-1 | 237852 | Fixed |
| openssl1.1 | c9f2 | 1.1.1d-alt1.1 | 1.1.1w-alt0.p9.1 | ALT-PU-2019-2771-1 | 237853 | Fixed |
| openssl10 | p9 | 1.0.2u-alt1.p9.1 | 1.0.2u-alt1.p9.2 | ALT-PU-2020-3485-1 | 263121 | Fixed |
| openssl10 | p8 | 1.0.2u-alt0.M80P.1 | 1.0.2u-alt0.M80P.2 | ALT-PU-2020-3494-1 | 263122 | Fixed |