CVE-2015-1788

Name of the Vulnerable Software and Affected Versions OpenSSL versions prior to 0.9.8s OpenSSL versions 1.0.0 prior to 1.0.0e OpenSSL versions 1.0.1 prior to 1.0.1n OpenSSL versions 1.0.2 prior to 1.0.2b

Description The issue is related to the BN GF2m mod inv function in OpenSSL, which does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field. This allows remote attackers to cause a denial of service (infinite loop) via a session that uses an Elliptic Curve algorithm. The vulnerability is associated with resource management errors and can be exploited by a remote attacker to cause a denial of service due to errors that occur during the establishment of a session that uses an Elliptic Curve-based algorithm.

Recommendations For OpenSSL versions prior to 0.9.8s, update to version 0.9.8s or later. For OpenSSL versions 1.0.0 prior to 1.0.0e, update to version 1.0.0e or later. For OpenSSL versions 1.0.1 prior to 1.0.1n, update to version 1.0.1n or later. For OpenSSL versions 1.0.2 prior to 1.0.2b, update to version 1.0.2b or later. As a temporary workaround, consider disabling the use of Elliptic Curve algorithms until a patch is available.