CVE-2019-1559

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q).

References

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00041.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00046.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00049.html

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00080.html

http://www.securityfocus.com/bid/107174

https://access.redhat.com/errata/RHSA-2019:2304

https://access.redhat.com/errata/RHSA-2019:2437

https://access.redhat.com/errata/RHSA-2019:2439

https://access.redhat.com/errata/RHSA-2019:2471

https://access.redhat.com/errata/RHSA-2019:3929

https://access.redhat.com/errata/RHSA-2019:3931

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e

https://kc.mcafee.com/corporate/index?page=content&id=SB10282

https://lists.debian.org/debian-lts-announce/2019/03/msg00003.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/EWC42UXL5GHTU5G77VKBF6JYUUNGSHOM/

https://lists.fedoraproject.org/archives/list/[email protected]/message/Y3IVFGSERAZLNJCK35TEM2R4726XIH3Z/

https://lists.fedoraproject.org/archives/list/[email protected]/message/ZBEV5QGDRFUZDMNECFXUSN5FMYOZDE4V/

https://security.gentoo.org/glsa/201903-10

https://security.netapp.com/advisory/ntap-20190301-0001/

https://security.netapp.com/advisory/ntap-20190301-0002/

https://security.netapp.com/advisory/ntap-20190423-0002/

https://support.f5.com/csp/article/K18549143

https://support.f5.com/csp/article/K18549143?utm_source=f5support&utm_medium=RSS

https://usn.ubuntu.com/3899-1/

https://usn.ubuntu.com/4376-2/

https://www.debian.org/security/2019/dsa-4400

https://www.openssl.org/news/secadv/20190226.txt

https://www.oracle.com/security-alerts/cpujan2020.html

https://www.oracle.com/security-alerts/cpujan2021.html

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

https://www.tenable.com/security/tns-2019-02

https://www.tenable.com/security/tns-2019-03

Details

Source: MITRE

Published: 2019-02-27

Updated: 2021-01-20

Type: CWE-203

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from 1.0.2 to 1.0.2q (inclusive)

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:hyper_converged_infrastructure:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:vsphere:*:*

cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:ontap_select_deploy:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapdrive:-:*:*:*:*:unix:*:*

cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:storagegrid:*:*:*:*:*:*:*:* versions from 9.0.0 to 9.0.4 (inclusive)

Configuration 5

OR

cpe:2.3:a:f5:traffix_signaling_delivery_controller:4.4.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:* versions from 5.0.0 to 5.1.0 (inclusive)

Configuration 6

OR

cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:* versions up to 8.2.3 (inclusive)

Configuration 7

OR

cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*

Tenable Plugins

View all (70 total)

IDNameProductFamilySeverity
150666SUSE SLES11 Security Update : openssl (SUSE-SU-2019:14092-1)NessusSuSE Local Security Checks
medium
150510SUSE SLES11 Security Update : openssl1 (SUSE-SU-2019:14091-1)NessusSuSE Local Security Checks
medium
138903MySQL Enterprise Monitor 4.x < 4.0.9 / 8.x < 8.0.16 Padding Oracle (Apr 2019 CPU)NessusCGI abuses
medium
137471EulerOS 2.0 SP2 : openssl110f (EulerOS-SA-2020-1629)NessusHuawei Local Security Checks
medium
134318NewStart CGSL MAIN 4.05 : openssl Vulnerability (NS-SA-2020-0019)NessusNewStart CGSL Local Security Checks
medium
134305Palo Alto Networks PAN-OS 7.1 < 7.1.25 / 8.0 < 8.0.20 / 8.1 < 8.1.8 / 9.0 < 9.0.2 OpenSSL VulnerabilityNessusPalo Alto Local Security Checks
medium
132991Oracle Business Intelligence Publisher Multiple Vulnerabilities (Jan 2020 CPU)NessusMisc.
high
132467NewStart CGSL CORE 5.05 / MAIN 5.05 : openssl Multiple Vulnerabilities (NS-SA-2019-0254)NessusNewStart CGSL Local Security Checks
medium
131214RHEL 6 / 7 / 8 : JBoss Web Server (RHSA-2019:3929)NessusRed Hat Local Security Checks
high
131030Amazon Linux 2 : openssl (ALAS-2019-1362)NessusAmazon Linux Local Security Checks
medium
130589Oracle Business Intelligence Publisher Multiple Vulnerabilities (Oct 2019 CPU)NessusMisc.
high
130516Juniper JSA10949NessusJunos Local Security Checks
medium
129941NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2019-0206)NessusNewStart CGSL Local Security Checks
medium
129653Fedora 31 : 1:compat-openssl10 (2019-db06efdea1)NessusFedora Local Security Checks
high
129368Fedora 29 : 1:compat-openssl10 (2019-9a0a7c0986)NessusFedora Local Security Checks
high
129319Fedora 30 : 1:compat-openssl10 (2019-00c25b9379)NessusFedora Local Security Checks
high
128687NewStart CGSL MAIN 4.06 : openssl Vulnerability (NS-SA-2019-0176)NessusNewStart CGSL Local Security Checks
medium
128388CentOS 7 : openssl (CESA-2019:2304)NessusCentOS Local Security Checks
medium
128247Scientific Linux Security Update : openssl on SL7.x x86_64 (20190806)NessusScientific Linux Local Security Checks
medium
128111Virtuozzo 6 : openssl / openssl-devel / openssl-perl / etc (VZLSA-2019-2471)NessusVirtuozzo Local Security Checks
medium
127986RHEL 7 : Virtualization Manager (RHSA-2019:2437)NessusRed Hat Local Security Checks
medium
127981Oracle Linux 6 : openssl (ELSA-2019-2471)NessusOracle Linux Local Security Checks
medium
127975OracleVM 3.4 : openssl (OVMSA-2019-0040)NessusOracleVM Local Security Checks
medium
127918CentOS 6 : openssl (CESA-2019:2471)NessusCentOS Local Security Checks
medium
127881Scientific Linux Security Update : openssl on SL6.x i386/x86_64 (20190813)NessusScientific Linux Local Security Checks
medium
127877RHEL 6 : openssl (RHSA-2019:2471)NessusRed Hat Local Security Checks
medium
127830RHEL 7 : Virtualization Manager (RHSA-2019:2439)NessusRed Hat Local Security Checks
critical
127710RHEL 7 : openssl (RHSA-2019:2304)NessusRed Hat Local Security Checks
medium
126777Oracle Enterprise Manager Ops Center (Jul 2019 CPU)NessusMisc.
critical
126775Oracle Enterprise Manager Cloud Control (Jul 2019 CPU)NessusMisc.
high
126327openSUSE Security Update : compat-openssl098 (openSUSE-2019-1637)NessusSuSE Local Security Checks
medium
126162SUSE SLED12 / SLES12 Security Update : compat-openssl098 (SUSE-SU-2019:1608-1)NessusSuSE Local Security Checks
medium
126046SUSE SLES12 Security Update : openssl (SUSE-SU-2019:1553-1)NessusSuSE Local Security Checks
medium
125882Tenable Nessus Agent < 7.4.0 Third Party Vulnerability (OpenSSL) (TNS-2019-03)NessusMisc.
medium
125708AIX OpenSSL Advisory : openssl_advisory30.ascNessusAIX Local Security Checks
medium
125535SUSE SLES12 Security Update : openssl (SUSE-SU-2019:1362-1)NessusSuSE Local Security Checks
medium
125340Oracle MySQL Connectors Multiple Vulnerabilities (Apr 2019 CPU)NessusMisc.
medium
125331openSUSE Security Update : openssl-1_0_0 (openSUSE-2019-1432)NessusSuSE Local Security Checks
medium
125001EulerOS Virtualization 3.0.1.0 : openssl (EulerOS-SA-2019-1548)NessusHuawei Local Security Checks
high
124903EulerOS Virtualization for ARM 64 3.0.1.0 : openssl (EulerOS-SA-2019-1400)NessusHuawei Local Security Checks
medium
124612EulerOS 2.0 SP3 : openssl (EulerOS-SA-2019-1326)NessusHuawei Local Security Checks
medium
124611EulerOS 2.0 SP2 : openssl (EulerOS-SA-2019-1325)NessusHuawei Local Security Checks
medium
700634MySQL 8.0.x < 8.0.16 Multiple Vulnerabilities (Apr 2019 CPU)Nessus Network MonitorDatabase
high
700633MySQL 5.7.x < 5.7.27 Multiple Vulnerabilities (Apr 2019 CPU)Nessus Network MonitorDatabase
high
700632MySQL 5.6.x < 5.6.44 Multiple Vulnerabilities (Apr 2019 CPU)Nessus Network MonitorDatabase
medium
124160MySQL 8.0.x < 8.0.16 Multiple Vulnerabilities (Apr 2019 CPU) (Jul 2019 CPU)NessusDatabases
critical
124159MySQL 5.7.x < 5.7.26 Multiple Vulnerabilities (Apr 2019 CPU) (Jul 2019 CPU)NessusDatabases
high
124158MySQL 5.6.x < 5.6.44 Multiple Vulnerabilities (Apr 2019 CPU)NessusDatabases
medium
124124Amazon Linux 2 : openssl (ALAS-2019-1188)NessusAmazon Linux Local Security Checks
medium
123957Amazon Linux AMI : openssl (ALAS-2019-1188)NessusAmazon Linux Local Security Checks
medium
123920openSUSE Security Update : openssl (openSUSE-2019-1175)NessusSuSE Local Security Checks
medium
123919openSUSE Security Update : nodejs6 (openSUSE-2019-1173)NessusSuSE Local Security Checks
medium
123726EulerOS Virtualization 2.5.3 : openssl (EulerOS-SA-2019-1258)NessusHuawei Local Security Checks
medium
123652openSUSE Security Update : openssl-1_0_0 (openSUSE-2019-1105)NessusSuSE Local Security Checks
medium
123619EulerOS 2.0 SP5 : openssl (EulerOS-SA-2019-1145)NessusHuawei Local Security Checks
medium
123551SUSE SLES12 Security Update : nodejs6 (SUSE-SU-2019:0818-1)NessusSuSE Local Security Checks
medium
123547SUSE SLED12 / SLES12 Security Update : openssl (SUSE-SU-2019:0803-1)NessusSuSE Local Security Checks
medium
123495openSUSE Security Update : nodejs4 (openSUSE-2019-1076)NessusSuSE Local Security Checks
medium
123462Tenable Nessus < 8.3.0 Multiple Vulnerabilities (TNS-2019-02)NessusMisc.
medium
122999SUSE SLES12 Security Update : nodejs4 (SUSE-SU-2019:0658-1)NessusSuSE Local Security Checks
medium
122832GLSA-201903-10 : OpenSSL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
122810SUSE SLED15 / SLES15 Security Update : openssl-1_0_0 (SUSE-SU-2019:0600-1)NessusSuSE Local Security Checks
medium
122747SUSE SLED12 / SLES12 Security Update : openssl-1_0_0 (SUSE-SU-2019:0572-1)NessusSuSE Local Security Checks
medium
122571FreeBSD : Node.js -- multiple vulnerabilities (b71d7193-3c54-11e9-a3f9-00155d006b02)NessusFreeBSD Local Security Checks
medium
122549Debian DLA-1701-1 : openssl security updateNessusDebian Local Security Checks
medium
122519Debian DSA-4400-1 : openssl1.0 - security updateNessusDebian Local Security Checks
medium
122504OpenSSL 1.0.x < 1.0.2r Information Disclosure VulnerabilityNessusWeb Servers
medium
122500Ubuntu 16.04 LTS / 18.04 LTS / 18.10 : OpenSSL vulnerability (USN-3899-1)NessusUbuntu Local Security Checks
medium
122469Slackware 14.2 : openssl (slackware 14.2) (SSA:2019-057-01)NessusSlackware Local Security Checks
medium
122359FreeBSD : OpenSSL -- Padding oracle vulnerability (7700061f-34f7-11e9-b95c-b499baebfeaf)NessusFreeBSD Local Security Checks
medium