Detections
Analytics

Mandrake Linux Security Advisory : openssl (MDKSA-2003:098)

critical Nessus Plugin ID 14080

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

Two bugs were discovered in OpenSSL 0.9.6 and 0.9.7 by NISCC. The parsing of unusual ASN.1 tag values can cause OpenSSL to crash, which could be triggered by a remote attacker by sending a carefully-crafted SSL client certificate to an application. Depending upon the application targetted, the effects seen will vary; in some cases a DoS (Denial of Service) could be performed, in others nothing noticeable or adverse may happen. These two vulnerabilities have been assigned CVE-2003-0543 and CVE-2003-0544.

Additionally, NISCC discovered a third bug in OpenSSL 0.9.7. Certain ASN.1 encodings that are rejected as invalid by the parser can trigger a bug in deallocation of a structure, leading to a double free. This can be triggered by a remote attacker by sending a carefully-crafted SSL client certificate to an application. This vulnerability may be exploitable to execute arbitrary code. This vulnerability has been assigned CVE-2003-0545.

The packages provided have been built with patches provided by the OpenSSL group that resolve these issues.

A number of server applications such as OpenSSH and Apache that make use of OpenSSL need to be restarted after the update has been applied to ensure that they are protected from these issues. Users are encouraged to restart all of these services or reboot their systems.

Solution

Update the affected packages.

See Also

https://www.openssl.org/news/secadv/20030930.txt

https://marc.info/?l=openssl-dev&m=108445413725636

http://www.uniras.gov.uk/vuls/2003/006489/tls.htm

Plugin Details

Severity: Critical

ID: 14080

File Name: mandrake_MDKSA-2003-098.nasl

Version: 1.25

Type: local

Published: 7/31/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:lib64openssl0.9.7, p-cpe:/a:mandriva:linux:lib64openssl0.9.7-devel, p-cpe:/a:mandriva:linux:lib64openssl0.9.7-static-devel, p-cpe:/a:mandriva:linux:libopenssl0, p-cpe:/a:mandriva:linux:libopenssl0-devel, p-cpe:/a:mandriva:linux:libopenssl0-static-devel, p-cpe:/a:mandriva:linux:libopenssl0.9.7, p-cpe:/a:mandriva:linux:libopenssl0.9.7-devel, p-cpe:/a:mandriva:linux:libopenssl0.9.7-static-devel, p-cpe:/a:mandriva:linux:openssl, cpe:/o:mandrakesoft:mandrake_linux:8.2, cpe:/o:mandrakesoft:mandrake_linux:9.0, cpe:/o:mandrakesoft:mandrake_linux:9.1, cpe:/o:mandrakesoft:mandrake_linux:9.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 9/30/2003

Reference Information

CVE: CVE-2003-0543, CVE-2003-0544, CVE-2003-0545

CWE: 119

CERT: 255484, 380864, 935264

MDKSA: 2003:098