https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Bug ID: 2104905 Summary: CVE-2022-2097 openssl: AES OCB fails to encrypt some bytes Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team@redhat.com Reporter: mcascell@redhat.com CC: bdettelb@redhat.com, berrange@redhat.com, bootloader-eng-team@redhat.com, caswilli@redhat.com, cfergeau@redhat.com, cllang@redhat.com, crobinso@redhat.com, crypto-team@lists.fedoraproject.org, csutherl@redhat.com, dbelyavs@redhat.com, ddepaula@redhat.com, dffrench@redhat.com, dhalasz@redhat.com, dkuc@redhat.com, dueno@redhat.com, elima@redhat.com, epel-packagers-sig@lists.fedoraproject.org, erik-fedora@vanpienbroek.nl, f4bug@amsat.org, fjansen@redhat.com, fmartine@redhat.com, gzaronik@redhat.com, jary@redhat.com, jburrell@redhat.com, jclere@redhat.com, jferlan@redhat.com, jkoehler@redhat.com, jwong@redhat.com, jwon@redhat.com, kaycoth@redhat.com, krathod@redhat.com, kraxel@redhat.com, kshier@redhat.com, ktietz@redhat.com, marcandre.lureau@redhat.com, michal.skrivanek@redhat.com, michel@michel-slm.name, micjohns@redhat.com, mjg59@srcf.ucam.org, mmadzin@redhat.com, mperina@redhat.com, mspacek@redhat.com, mturk@redhat.com, ngough@redhat.com, pbonzini@redhat.com, peholase@redhat.com, pjindal@redhat.com, pjones@redhat.com, plodge@redhat.com, redhat-bugzilla@linuxnetz.de, rgodfrey@redhat.com, rharwood@redhat.com, rh-spice-bugs@redhat.com, rjones@redhat.com, sahana@redhat.com, sbonazzo@redhat.com, stcannon@redhat.com, sthirugn@redhat.com, szappis@redhat.com, tfister@redhat.com, tm@t8m.info, virt-maint@lists.fedoraproject.org, virt-maint@redhat.com, vkrizan@redhat.com, vkumar@redhat.com, vmugicag@redhat.com Blocks: 2104175 Target Milestone: --- Classification: Other
AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed.
OpenSSL security advisory: https://www.openssl.org/news/secadv/20220705.txt
Upstream fix: https://github.com/openssl/openssl/commit/6ebf6d51596f51d23ccbc17930778d104a... [master] https://github.com/openssl/openssl/commit/919925673d6c9cfed3c1085497f5dfbbed... [1_1_1-stable] https://github.com/openssl/openssl/commit/a98f339ddd7e8f487d6e0088d4a9a42324... [openssl-3.0]
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Mauro Matteo Cascella mcascell@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |2104926, 2104925, 2104923, | |2104924
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
--- Doc Text *updated* by Mauro Matteo Cascella mcascell@redhat.com --- AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimized implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed.
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Mauro Matteo Cascella mcascell@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |2105030, 2105026, 2105027, | |2105029, 2105028
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Mauro Matteo Cascella mcascell@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |2105033, 2105034, 2105032, | |2105035, 2105036, 2105037
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=2105032 [Bug 2105032] CVE-2022-2097 openssl11: openssl: AES OCB fails to encrypt some bytes [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=2105033 [Bug 2105033] CVE-2022-2097 openssl3: openssl: AES OCB fails to encrypt some bytes [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2105034 [Bug 2105034] CVE-2022-2097 edk2: openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105035 [Bug 2105035] CVE-2022-2097 mingw-openssl: openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105036 [Bug 2105036] CVE-2022-2097 openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105037 [Bug 2105037] CVE-2022-2097 openssl1.1: openssl: AES OCB fails to encrypt some bytes [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
--- Comment #3 from Mauro Matteo Cascella mcascell@redhat.com --- Created edk2 tracking bugs for this issue:
Affects: fedora-all [bug 2105034]
Created mingw-openssl tracking bugs for this issue:
Affects: fedora-all [bug 2105035]
Created openssl tracking bugs for this issue:
Affects: fedora-all [bug 2105036]
Created openssl1.1 tracking bugs for this issue:
Affects: fedora-all [bug 2105037]
Created openssl11 tracking bugs for this issue:
Affects: epel-7 [bug 2105032]
Created openssl3 tracking bugs for this issue:
Affects: epel-8 [bug 2105033]
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105036, which changed state.
Bug 2105036 Summary: CVE-2022-2097 openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105036
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |ERRATA
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105037, which changed state.
Bug 2105037 Summary: CVE-2022-2097 openssl1.1: openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105037
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |ERRATA
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
juneau@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |2105279, 2105280
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105034, which changed state.
Bug 2105034 Summary: CVE-2022-2097 edk2: openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105034
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |NOTABUG
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105032, which changed state.
Bug 2105032 Summary: CVE-2022-2097 openssl11: openssl: AES OCB fails to encrypt some bytes [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=2105032
What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Ahmed Nazmy anazmy@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |anazmy@redhat.com Flags| |needinfo?(mcascell@redhat.c | |om)
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Mauro Matteo Cascella mcascell@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(mcascell@redhat.c | |om) |
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
--- Comment #8 from errata-xmlrpc errata-xmlrpc@redhat.com --- This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2022:5818 https://access.redhat.com/errata/RHSA-2022:5818
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
errata-xmlrpc errata-xmlrpc@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2022:5818
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
--- Comment #10 from errata-xmlrpc errata-xmlrpc@redhat.com --- This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2022:6224 https://access.redhat.com/errata/RHSA-2022:6224
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
errata-xmlrpc errata-xmlrpc@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2022:6224
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
--- Comment #11 from Product Security DevOps Team prodsec-dev@redhat.com --- This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):
https://access.redhat.com/security/cve/cve-2022-2097
https://bugzilla.redhat.com/show_bug.cgi?id=2104905
Product Security DevOps Team prodsec-dev@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |ERRATA Status|NEW |CLOSED Last Closed| |2022-09-03 10:55:52
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105033, which changed state.
Bug 2105033 Summary: CVE-2022-2097 openssl3: openssl: AES OCB fails to encrypt some bytes [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2105033
What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA
https://bugzilla.redhat.com/show_bug.cgi?id=2104905 Bug 2104905 depends on bug 2105035, which changed state.
Bug 2105035 Summary: CVE-2022-2097 mingw-openssl: openssl: AES OCB fails to encrypt some bytes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2105035
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |EOL
epel-packagers-sig@lists.fedoraproject.org
-
bugzilla@redhat.com