CVE-2021-3450

The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a "purpose" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named "purpose" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.4 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
opensslCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
VendorProductVersion
opensslopenssl
1.1.1h ≤
𝑥
< 1.1.1k
freebsdfreebsd
12.2
freebsdfreebsd
12.2:p1
freebsdfreebsd
12.2:p2
netappsantricity_smi-s_provider_firmware
-
netappstoragegrid_firmware
-
windriverlinux
-
windriverlinux
17.0
windriverlinux
18.0
windriverlinux
19.0
netappcloud_volumes_ontap_mediator
-
netapponcommand_workflow_automation
-
netappontap_select_deploy_administration_utility
-
netappstoragegrid
-
tenablenessus
𝑥
≤ 8.13.1
tenablenessus_agent
8.2.1 ≤
𝑥
≤ 8.2.3
tenablenessus_network_monitor
5.11.0
tenablenessus_network_monitor
5.11.1
tenablenessus_network_monitor
5.12.0
tenablenessus_network_monitor
5.12.1
tenablenessus_network_monitor
5.13.0
oraclecommerce_guided_search
11.3.2
oracleenterprise_manager_for_storage_management
13.4.0.0
oraclegraalvm
19.3.5
oraclegraalvm
20.3.1.2
oraclegraalvm
21.0.0.2
oraclejd_edwards_enterpriseone_tools
𝑥
< 9.2.6.0
oraclemysql_connectors
𝑥
≤ 8.0.23
oraclemysql_enterprise_monitor
𝑥
≤ 8.0.23
oraclemysql_server
𝑥
≤ 5.7.33
oraclemysql_server
8.0.15 ≤
𝑥
≤ 8.0.23
oraclemysql_workbench
𝑥
≤ 8.0.23
oraclepeoplesoft_enterprise_peopletools
8.57 ≤
𝑥
≤ 8.59
oraclesecure_backup
𝑥
< 18.1.0.1.0
oraclesecure_global_desktop
5.6
oracleweblogic_server
12.2.1.4.0
oracleweblogic_server
14.1.1.0.0
mcafeeweb_gateway
8.2.19
mcafeeweb_gateway
9.2.10
mcafeeweb_gateway
10.1.1
mcafeeweb_gateway_cloud_service
8.2.19
mcafeeweb_gateway_cloud_service
9.2.10
mcafeeweb_gateway_cloud_service
10.1.1
sonicwallsma100_firmware
𝑥
< 10.2.1.0-17sv
sonicwallcapture_client
𝑥
< 3.6.24
sonicwallemail_security
𝑥
< 10.0.11
sonicwallsonicos
𝑥
≤ 7.0.1-r1456
nodejsnode.js
10.0.0 ≤
𝑥
< 10.24.1
nodejsnode.js
12.0.0 ≤
𝑥
< 12.22.1
nodejsnode.js
14.0.0 ≤
𝑥
< 14.16.1
nodejsnode.js
15.0.0 ≤
𝑥
< 15.14.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openssl
bullseye
1.1.1w-0+deb11u1
fixed
buster
not-affected
stretch
not-affected
bullseye (security)
1.1.1w-0+deb11u2
fixed
bookworm
3.0.14-1~deb12u1
fixed
bookworm (security)
3.0.14-1~deb12u2
fixed
sid
3.3.2-2
fixed
trixie
3.3.2-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
edk2
groovy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
dne
nodejs
groovy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
openssl
groovy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
openssl1.0
groovy
dne
focal
dne
bionic
not-affected
xenial
dne
trusty
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2021/03/27/1
http://www.openwall.com/lists/oss-security/2021/03/27/2
http://www.openwall.com/lists/oss-security/2021/03/28/3
http://www.openwall.com/lists/oss-security/2021/03/28/4
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2a40b7bc7b94dd7de897a74571e7024f0cf0d63b
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
https://kc.mcafee.com/corporate/index?page=content&id=SB10356
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
https://mta.openssl.org/pipermail/openssl-announce/2021-March/000198.html
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
https://security.gentoo.org/glsa/202103-03
https://security.netapp.com/advisory/ntap-20210326-0006/
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
https://www.openssl.org/news/secadv/20210325.txt
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.oracle.com/security-alerts/cpuoct2021.html
https://www.tenable.com/security/tns-2021-05
https://www.tenable.com/security/tns-2021-08
https://www.tenable.com/security/tns-2021-09
http://www.openwall.com/lists/oss-security/2021/03/27/1
http://www.openwall.com/lists/oss-security/2021/03/27/2
http://www.openwall.com/lists/oss-security/2021/03/28/3
http://www.openwall.com/lists/oss-security/2021/03/28/4
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2a40b7bc7b94dd7de897a74571e7024f0cf0d63b
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
https://kc.mcafee.com/corporate/index?page=content&id=SB10356
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
https://mta.openssl.org/pipermail/openssl-announce/2021-March/000198.html
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
https://security.gentoo.org/glsa/202103-03
https://security.netapp.com/advisory/ntap-20210326-0006/
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
https://www.openssl.org/news/secadv/20210325.txt
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.oracle.com/security-alerts/cpuoct2021.html
https://www.tenable.com/security/tns-2021-05
https://www.tenable.com/security/tns-2021-08
https://www.tenable.com/security/tns-2021-09