CVE-2016-0799

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.0.1 through 1.0.1s OpenSSL versions 1.0.2 through 1.0.2g

Description The issue is related to the fmtstr function in crypto/bio/b print.c, which improperly calculates string lengths. This allows remote attackers to cause a denial of service or possibly have other impacts via a long string, such as a large amount of ASN.1 data. A side-channel attack was also found, which could lead to the recovery of RSA keys using cache-bank conflicts on the Intel Sandy-Bridge microarchitecture.

Recommendations For OpenSSL versions 1.0.1 through 1.0.1s, update to version 1.0.1s or later. For OpenSSL versions 1.0.2 through 1.0.2g, update to version 1.0.2g or later. As a temporary workaround, consider restricting the use of the fmtstr function in crypto/bio/b print.c to minimize the risk of exploitation. Avoid using long "%s" format strings in the BIO *printf functions until the issue is resolved.