CVE-2021-3449

Published: 25 March 2021

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).

Priority

CVSS 3 base score: 5.9

Status

Package	Release	Status
edk2 Launchpad, Ubuntu, Debian	bionic	Not vulnerable
	focal	Not vulnerable
	groovy	Not vulnerable
	hirsute	Not vulnerable
	impish	Not vulnerable
	jammy	Not vulnerable
	precise	Does not exist
	trusty	Does not exist
	upstream	Not vulnerable
	xenial	Not vulnerable
nodejs Launchpad, Ubuntu, Debian	bionic	Not vulnerable (uses system openssl1.0)
	focal	Not vulnerable (uses system openssl1.1)
	groovy	Not vulnerable (uses system openssl1.1)
	hirsute	Not vulnerable (uses system openssl1.1)
	impish	Not vulnerable (uses system openssl1.1)
	jammy	Not vulnerable (uses system openssl1.1)
	precise	Does not exist
	trusty	Not vulnerable (uses system openssl)
	upstream	Needs triage
	xenial	Not vulnerable (uses system openssl)
openssl Launchpad, Ubuntu, Debian	bionic	Released (1.1.1-1ubuntu2.1~18.04.9)
	focal	Released (1.1.1f-1ubuntu2.3)
	groovy	Released (1.1.1f-1ubuntu4.3)
	hirsute	Released (1.1.1j-1ubuntu3)
	impish	Released (1.1.1j-1ubuntu3)
	jammy	Released (1.1.1j-1ubuntu3)
	precise	Not vulnerable
	trusty	Not vulnerable
	upstream	Needs triage
	xenial	Not vulnerable (1.0.2g-1ubuntu4.19)
openssl1.0 Launchpad, Ubuntu, Debian	bionic	Not vulnerable (1.0.2n-1ubuntu5.6)
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
postgresql-10 Launchpad, Ubuntu, Debian	bionic	Released (10.18-0ubuntu0.18.04.1)
	focal	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
postgresql-12 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Released (12.8-0ubuntu0.20.04.1)
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
postgresql-13 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	hirsute	Released (13.4-0ubuntu0.21.04.1)
	impish	Released (13.4-1)
	jammy	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
postgresql-9.1 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
postgresql-9.3 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Deferred (2019-08-23)
	upstream	Needs triage
	xenial	Does not exist
postgresql-9.5 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Needs triage

Notes

Author	Note
mdeslaur	does not affect 1.0.2 edk2 doesn't implement a server, so not vulnerable to this issue

References

Bugs

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›