Alpine: libcrypto3, multiple openssl packages: security update to 1.0.2-r0 (deprecated)

medium Tenable Cloud Security Plugin ID 400741

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with
1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a
result of this defect would be very difficult to perform and are not believed likely. Attacks against
DH1024 are considered just feasible, because most of the work necessary to deduce information about a
private key may be performed offline. The amount of resources required for such an attack would be
significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024
private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects
processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The
impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version
1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue
we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h
when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.
(CVE-2017-3738)

- Because of an implementation bug the PA-RISC CRYPTO_memcmp function is effectively reduced to only
comparing the least significant bit of each byte. This allows an attacker to forge messages that would be
considered as authenticated in an amount of tries lower than that guaranteed by the security claims of the
scheme. The module can only be compiled by the HP-UX assembler, so that only HP-UX PA-RISC targets are
affected. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). (CVE-2018-0733)

- Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually
exceed the stack given malicious input with excessive recursion. This could result in a Denial Of Service
attack. There are no such structures used within SSL/TLS that come from untrusted sources so this is
considered safe. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). Fixed in OpenSSL 1.0.2o (Affected
1.0.2b-1.0.2n). (CVE-2018-0739)

See Also

https://git.alpinelinux.org/aports/commit/?id=286fad13ea9a815a573908a3b06a4e1a7c4bcb44

https://git.alpinelinux.org/aports/commit/?id=6380442a16252d6f1eec965cf2f024e19a6f88f2

Plugin Details

Severity: Medium

ID: 400741

Version: Revision 1.26

Type: Local

Published: 8/16/2023

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 5

Percentile: 94.65

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.6

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS Score Source: CVE-2018-0733

CVSS v3

Risk Factor: Medium

Base Score: 5.9

Temporal Score: 5.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 4/1/2018

Vulnerability Publication Date: 12/7/2017

Reference Information

CVE: CVE-2017-3738, CVE-2018-0733, CVE-2018-0739

BID: 102118, 103517, 103518

IAVA: 2017-A-0358-S, 2018-A-0091-S