Alpine: openssl1.1-compat: security update to 0

high Tenable Cloud Security Plugin ID 406137

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This
script is distributed by some operating systems in a manner where it is automatically executed. On such
operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of
the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool.
Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n).
Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd). (CVE-2022-1292)

- In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances
where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection
were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other
places in the script where the file names of certificates being hashed were possibly passed to a command
executed through the shell. This script is distributed by some operating systems in a manner where it is
automatically executed. On such operating systems, an attacker could execute arbitrary commands with the
privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the
OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in
OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze). (CVE-2022-2068)

- The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy
check when doing certificate verification. However the implementation of the function does not enable the
check which allows certificates with invalid or incorrect policies to pass the certificate verification.
As suddenly enabling the policy check could break existing deployments it was decided to keep the existing
behavior of the X509_VERIFY_PARAM_add0_policy() function. Instead the applications that require OpenSSL to
perform certificate policy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly enable the
policy check by calling X509_VERIFY_PARAM_set_flags() with the X509_V_FLAG_POLICY_CHECK flag argument.
Certificate policy checks are disabled by default in OpenSSL and are not commonly used by applications.
(CVE-2023-0466)

See Also

https://security.alpinelinux.org/vuln/CVE-2022-1292

https://security.alpinelinux.org/vuln/CVE-2022-2068

https://security.alpinelinux.org/vuln/CVE-2023-0466

Plugin Details

Severity: High

ID: 406137

Version: Revision 1.31

Type: Local

Published: 10/31/2023

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: High

Score: 7.6

Percentile: 98.48

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2022-2068

CVSS v3

Risk Factor: High

Base Score: 7.3

Temporal Score: 6.6

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 5/3/2022

Reference Information

CVE: CVE-2022-1292, CVE-2022-2068, CVE-2023-0466