int(3498)

Vulnerability Bulletins

Ejecución de código arbitrario en OpenSSL

Vulnerability classification
Property Value
Confidence level Oficial
Impact Obtener acceso
Dificulty Experto
Required attacker level Acceso remoto sin cuenta a un servicio estandar

System information
Property Value
Affected manufacturer GNU/Linux
Affected software OpenSSL 0.9.8 < 0.9.8f
OpenSSL 0.9.7

Description
Se ha encontrado una vulnerabilidad en OpenSSL 0.9.8 en las versiones anteriores a la 0.9.8f y en la versión 0.9.7. La vulnerabilidad reside en un error en la implementación DTLS.

Un atacante remoto podría ejecutar código arbitrario mediante métodos todavía no especificados.

Solution


Actualización de software

OpenSSL
OpenSSL 0.9.8f
http://www.openssl.org/source/

Red Hat (RHSA-2007:0964-4)
RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
https://rhn.redhat.com/

Mandriva (MDKSA-2007:237)

Mandriva Linux 2007
X86
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/i586/media/main/updates/libopenssl0.9.8-0.9.8b-2.4mdv2007.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/i586/media/main/updates/libopenssl0.9.8-devel-0.9.8b-2.4mdv2007.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/i586/media/main/updates/libopenssl0.9.8-static-devel-0.9.8b-2.4mdv2007.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/i586/media/main/updates/openssl-0.9.8b-2.4mdv2007.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/SRPMS/main/updates/openssl-0.9.8b-2.4mdv2007.0.src.rpm
X86_64
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/x86_64/media/main/updates/lib64openssl0.9.8-0.9.8b-2.4mdv2007.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/x86_64/media/main/updates/lib64openssl0.9.8-devel-0.9.8b-2.4mdv2007.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/x86_64/media/main/updates/lib64openssl0.9.8-static-devel-0.9.8b-2.4mdv2007.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/x86_64/media/main/updates/openssl-0.9.8b-2.4mdv2007.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.0/SRPMS/main/updates/openssl-0.9.8b-2.4mdv2007.0.src.rpm

Mandriva Linux 2007.1
X86
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/i586/media/main/updates/libopenssl0.9.8-0.9.8e-2.3mdv2007.1.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/i586/media/main/updates/libopenssl0.9.8-devel-0.9.8e-2.3mdv2007.1.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/i586/media/main/updates/libopenssl0.9.8-static-devel-0.9.8e-2.3mdv2007.1.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/i586/media/main/updates/openssl-0.9.8e-2.3mdv2007.1.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/SRPMS/main/updates/openssl-0.9.8e-2.3mdv2007.1.src.rpm
X86_64
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/x86_64/media/main/updates/lib64openssl0.9.8-0.9.8e-2.3mdv2007.1.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/x86_64/media/main/updates/lib64openssl0.9.8-devel-0.9.8e-2.3mdv2007.1.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/x86_64/media/main/updates/lib64openssl0.9.8-static-devel-0.9.8e-2.3mdv2007.1.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/x86_64/media/main/updates/openssl-0.9.8e-2.3mdv2007.1.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2007.1/SRPMS/main/updates/openssl-0.9.8e-2.3mdv2007.1.src.rpm

Mandriva Linux 2008.0
X86
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/i586/media/main/updates/libopenssl0.9.8-0.9.8e-8.1mdv2008.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/i586/media/main/updates/libopenssl0.9.8-devel-0.9.8e-8.1mdv2008.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/i586/media/main/updates/libopenssl0.9.8-static-devel-0.9.8e-8.1mdv2008.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/i586/media/main/updates/openssl-0.9.8e-8.1mdv2008.0.i586.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/SRPMS/main/updates/openssl-0.9.8e-8.1mdv2008.0.src.rpm
X86_64
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/x86_64/media/main/updates/lib64openssl0.9.8-0.9.8e-8.1mdv2008.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/x86_64/media/main/updates/lib64openssl0.9.8-devel-0.9.8e-8.1mdv2008.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/x86_64/media/main/updates/lib64openssl0.9.8-static-devel-0.9.8e-8.1mdv2008.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/x86_64/media/main/updates/openssl-0.9.8e-8.1mdv2008.0.x86_64.rpm
ftp://ftp.cica.es/pub/Linux/Mandrakelinux/official/updates/2008.0/SRPMS/main/updates/openssl-0.9.8e-8.1mdv2008.0.src.rpm

Hewlett-Packard
HP-UX B.11.11
Actualizar a OpenSSL A.00.09.07m.002
HP-UX B.11.23
Actualizar a OpenSSL A.00.09.07m.003
HP-UX B.11.31
Actualizar a OpenSSL A.00.09.08g.001
http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=OPENSSL11I

Standar resources
Property Value
CVE CVE-2007-4995
BID 26055

Other resources
OpenSSL Security Advisory [12-Oct-2007]
http://www.openssl.org/news/secadv_20071012.txt

Red Hat Security Advisory (RHSA-2007:0964-4)
https://rhn.redhat.com/errata/RHSA-2007-0964.html

Mandriva Security Advisory (MDKSA-2007:237)
http://www.mandriva.com/security/advisories?name=MDKSA-2007:237

HP Support document (HPSBUX02296)
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01299773

Version history
Version Comments Date
1.0 Aviso emitido 2007-10-16
1.1 Aviso emitido por Mandriva (MDKSA-2007:237) 2007-12-05
1.2 Aviso emitido por HP (HPSBUX02296) 2007-12-14
Ministerio de Defensa
CNI
CCN
CCN-CERT