Note: This is an archival copy of Security Sun Alert 258048 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020423.1.
Article ID : 1020423.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2010-12-08
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

A Security Vulnerability in the ASN.1 Handling in Solaris OpenSSL May Lead to a Denial of Service (DoS) Condition



Category
Security

Release Phase
Resolved

Bug Id
6824175

Product
Solaris 10 Operating System
OpenSolaris

Date of Workaround Release
29-Apr-2009

Date of Resolved Release
08-Jun-2009

A Security Vulnerability in the ASN.1 Handling in Solaris OpenSSL May Lead to a Denial of Service (DoS) Condition

1. Impact

A security vulnerability in the ASN.1 handling in the OpenSSL product (see openssl(5)) shipped with Solaris may allow a local or remote unprivileged user to cause a Denial of Service (DoS) to applications calling the "ASN1_STRING_print_ex()" printing function.

Additional information regarding this issue can be found in the following document:


2. Contributing Factors

This issue can occur in the following releases:

SPARC Platform:
  • Solaris 10 without patch 141742-01
  • OpenSolaris based upon builds snv_01 through snv_112
x86 Platform:
  • Solaris 10 without patch 140119-07
  • OpenSolaris based upon builds snv_01 through snv_112
Notes:

1. Solaris 8 and Solaris 9 are not impacted by this issue.

2. Any OpenSSL application which prints out the contents of a certificate could be affected by this bug, including SSL servers, clients and S/MIME software. For example: commands such as openssl(1) and servers such as PostgreSQL are known to be vulnerable to this issue.

3. Solaris Secure Shell (SSH), Firefox and Thunderbird distributed with Solaris are not vulnerable to this issue.

OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. The base build can be derived as follows:
$ uname -v
snv_101

3. Symptoms

There are no predictable symptoms that would indicate the described vulnerability has been exploited.

4. Workaround

There is no workaround for this issue. Please see the Resolution section below.

5. Resolution

This issue is addressed in the following releases:

SPARC Platform:
  • Solaris 10 with patch 141742-01 or later
  • OpenSolaris based upon builds snv_113 or later
x86 Platform:
  • Solaris 10 with patch 140119-07 or later
  • OpenSolaris based upon builds snv_113 or later
For more information on Security Sun Alerts, see 1009886.1


Modification History
04-May-2009: Added additional "Notes" to Contributing Factors
08-Jun-2009: Updated Contributing Factors and Resolution sections; Resolved

References

141742-01
140119-07

References

SUNPATCH:140119-07
SUNPATCH:141742-01



Attachments
This solution has no attachment