PT-2016-5019 · Openssl+8 · Openssl+10
Juraj Somorovsky
·
Published
2016-05-03
·
Updated
2026-03-07
·
CVE-2016-2107
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
OpenSSL versions 1.0.1 through 1.0.1t
OpenSSL versions 1.0.2 through 1.0.2h
Description
The AES-NI implementation in OpenSSL does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. This issue exists because of an incorrect fix for a previous vulnerability. Multiple products incorporate a version of the OpenSSL package affected by this vulnerability, which could allow an unauthenticated, remote attacker to decrypt and access sensitive information.
Recommendations
For OpenSSL versions 1.0.1 through 1.0.1t, update to version 1.0.1t or later.
For OpenSSL versions 1.0.2 through 1.0.2h, update to version 1.0.2h or later.
As a temporary workaround, consider disabling the AES-NI implementation until a patch is available.
Restrict access to AES CBC sessions to minimize the risk of exploitation.
Exploit
Fix
DoS
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Centos
Cisco Asa
Cisco Nexus
Cisco Wls
Freebsd
Huawei Vrp
Openssl
Red Hat
Suse
Ubuntu