CVE-2022-0778

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2022-0778
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2022-03-15 17:15:00 UTC
Updated2023-11-07 03:41:00 UTC
DescriptionThe BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).

Risk And Classification

Problem Types: CWE-835

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Debian Debian Linux 10.0 All All All
Operating System Debian Debian Linux 11.0 All All All
Operating System Debian Debian Linux 9.0 All All All
Operating System Fedoraproject Fedora 34 All All All
Operating System Fedoraproject Fedora 35 All All All
Operating System Fedoraproject Fedora 36 All All All
Application Mariadb Mariadb All All All All
Hardware Netapp 500f - All All All
Operating System Netapp 500f Firmware - All All All
Hardware Netapp A250 - All All All
Operating System Netapp A250 Firmware - All All All
Application Netapp Cloud Volumes Ontap Mediator - All All All
Application Netapp Clustered Data Ontap - All All All
Application Netapp Clustered Data Ontap Antivirus Connector - All All All
Application Netapp Santricity Smi-s Provider - All All All
Application Netapp Storagegrid - All All All
Application Nodejs Node.js All All All All
Application Nodejs Node.js All All All All
Application Nodejs Node.js All All All All
Application Nodejs Node.js All All All All
Application Nodejs Node.js All All All All
Application Openssl Openssl All All All All
Application Tenable Nessus All All All All

References

ReferenceSourceLinkTags
CVE-2022-0778 OpenSSL Vulnerability in NetApp Products | NetApp Product Security CONFIRM security.netapp.com
git.openssl.org Git git.openssl.org
About the security content of macOS Big Sur 11.6.6 - Apple Support CONFIRM support.apple.com
Full Disclosure: APPLE-SA-2022-05-16-2 macOS Monterey 12.4 FULLDISC seclists.org
About the security content of macOS Monterey 12.4 - Apple Support CONFIRM support.apple.com
Oracle Critical Patch Update Advisory - April 2022 MISC www.oracle.com
[SECURITY] Fedora 36 Update: openssl1.1-1.1.1n-1.fc36 - package-announce - Fedora Mailing-Lists lists.fedoraproject.org
OpenSSL: Multiple Vulnerabilities (GLSA 202210-02) — Gentoo security GENTOO security.gentoo.org
[R1] Nessus Versions 8.15.4 and 10.1.2 Fix One Third-Party Vulnerability - Security Advisory | Tenable® CONFIRM www.tenable.com
About the security content of Security Update 2022-004 Catalina - Apple Support CONFIRM support.apple.com
[SECURITY] Fedora 34 Update: openssl-1.1.1n-1.fc34 - package-announce - Fedora Mailing-Lists lists.fedoraproject.org
[R1] Nessus Agent Versions 8.3.3 and 10.1.3 Fix One Third-Party Vulnerability - Security Advisory | Tenable® CONFIRM www.tenable.com
[SECURITY] Fedora 36 Update: openssl1.1-1.1.1n-1.fc36 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
git.openssl.org Git - openssl.git/commitdiff CONFIRM git.openssl.org
[SECURITY] Fedora 35 Update: openssl-1.1.1n-1.fc35 - package-announce - Fedora Mailing-Lists lists.fedoraproject.org
[R1] Tenable.sc 5.21.0 Fixes Multiple Third-Party Vulnerabilities - Security Advisory | Tenable® CONFIRM www.tenable.com
git.openssl.org Git - openssl.git/commitdiff git.openssl.org
[SECURITY] [DLA 2952-1] openssl security update MLIST lists.debian.org
[R1] Stand-alone Security Patch Available for Tenable.sc versions 5.19.0 to 5.20.1: Patch 202204.1 - Security Advisory | Tenable® CONFIRM www.tenable.com
Debian -- Security Information -- DSA-5103-1 openssl DEBIAN www.debian.org
cert-portal.siemens.com/productcert/pdf/ssa-712929.pdf CONFIRM cert-portal.siemens.com
Full Disclosure: APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6 FULLDISC seclists.org
[SECURITY] Fedora 34 Update: openssl-1.1.1n-1.fc34 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
git.openssl.org Git - openssl.git/commitdiff CONFIRM git.openssl.org
www.openssl.org/news/secadv/20220315.txt CONFIRM www.openssl.org
Security Advisory CONFIRM psirt.global.sonicwall.com
April 2022 MySQL Server Vulnerabilities in NetApp Products | NetApp Product Security CONFIRM security.netapp.com
OpenSSL 1.0.2 / 1.1.1 / 3.0 BN_mod_sqrt() Infinite Loop ≈ Packet Storm MISC packetstormsecurity.com
git.openssl.org Git - openssl.git/commitdiff git.openssl.org
Full Disclosure: APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina FULLDISC seclists.org
Oracle Critical Patch Update Advisory - July 2022 N/A www.oracle.com
[SECURITY] [DLA 2953-1] openssl1.0 security update MLIST lists.debian.org
[SECURITY] Fedora 35 Update: openssl-1.1.1n-1.fc35 - package-announce - Fedora Mailing-Lists FEDORA lists.fedoraproject.org
git.openssl.org Git - openssl.git/commitdiff CONFIRM git.openssl.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Vendor Comments And Credit

Discovery Credit

LEGACY: Tavis Ormandy (Google)

Legacy QID Mappings

  • 159721 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9224)
  • 159722 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9237)
  • 159723 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9225)
  • 159726 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9233)
  • 159728 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9243)
  • 159730 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9246)
  • 159734 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-1066)
  • 159735 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-1065)
  • 159736 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9249)
  • 159737 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9255)
  • 159738 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9258)
  • 159747 Oracle Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ELSA-2022-9272)
  • 159945 Oracle Enterprise Linux Security Update for compat-openssl11 (ELSA-2022-4899)
  • 159953 Oracle Enterprise Linux Security Update for compat-openssl10 (ELSA-2022-5326)
  • 179131 Debian Security Update for openssl1.0 (DLA 2953-1)
  • 179132 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (DLA 2952-1)
  • 179142 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (DSA 5103-1)
  • 182885 Debian Security Update for Open Secure Sockets Layer (OpenSSL) (CVE-2022-0778)
  • 198702 Ubuntu Security Notification for Open Secure Sockets Layer (OpenSSL) Vulnerability (USN-5328-1)
  • 199873 Ubuntu Security Notification for Node.js Vulnerabilities (USN-6457-1)
  • 20256 Oracle MySQL April 2022 Critical Patch Update (CPUAPR2022)
  • 240170 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1065)
  • 240185 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1066)
  • 240188 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1071)
  • 240194 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1091)
  • 240235 Red Hat Update for JBoss Core Services (RHSA-2022:1389)
  • 240410 Red Hat Update for compat-openssl11 (RHSA-2022:4899)
  • 240432 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1078)
  • 240451 Red Hat Update for Open Secure Sockets Layer (OpenSSL) (RHSA-2022:1077)
  • 240532 Red Hat Update for compat-openssl10 (RHSA-2022:5326)
  • 257163 CentOS Security Update for Open Secure Sockets Layer (OpenSSL) (CESA-2022:1066)
  • 282498 Fedora Security Update for Open Secure Sockets Layer (OpenSSL) (FEDORA-2022-a5f51502f0)
  • 282550 Fedora Security Update for Open Secure Sockets Layer (OpenSSL) (FEDORA-2022-9e88b5d8d7)
  • 296057 Oracle Solaris 11.4 Support Repository Update (SRU) 44.113.4 Missing (bulletinapr2022)
  • 296082 Oracle Solaris 11.4 Support Repository Update (SRU) 48.126.1 Missing (CPUJUL2022)
  • 330104 IBM Advanced Interactive eXecutive (AIX) Open Secure Sockets Layer (OpenSSL) Denial of Service (DoS) Vulnerability (openssl_advisory35)
  • 353201 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : ALAS-2022-1575
  • 353202 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL), Open Secure Sockets Layer11 (OpenSSL11) : ALAS2-2022-1766
  • 353278 Amazon Linux Security Advisory for aws-nitro-enclaves-acm, aws-nitro-enclaves-acm : ALAS2NITRO-ENCLAVES-2022-018
  • 354459 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : ALAS2022-2022-195
  • 354463 Amazon Linux Security Advisory for openssl, Open Secure Sockets Layer1.1 (OpenSSL1.1) : ALAS2022-2022-041
  • 354476 Amazon Linux Security Advisory for mariadb105 : ALAS2022-2022-182
  • 354579 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : ALAS-2022-195
  • 354628 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : AL2012-2022-360
  • 355152 Amazon Linux Security Advisory for mariadb105 : ALAS2023-2023-037
  • 355250 Amazon Linux Security Advisory for Open Secure Sockets Layer (OpenSSL) : ALAS2023-2023-051
  • 356265 Amazon Linux Security Advisory for mariadb : ALASMARIADB10.5-2023-003
  • 357333 Amazon Linux Security Advisory for edk2 : ALAS2-2024-2502
  • 376497 F5 BIG-IP Application Security Manager (ASM), Local Traffic Manager (LTM), Access Policy Manager (APM) Open Secure Sockets Layer (OpenSSL) Vulnerability (K31323265)
  • 376546 Oracle Java Standard Edition (SE) Critical Patch Update - April 2022 (CPUAPR2022)
  • 376558 Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376559 Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376560 Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376561 Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376562 Palo Alto Networks (GlobalProtect App) of the Openssl Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376563 Palo Alto Networks (GlobalProtect App) Impact of the Open Secure Sockets Layer (OpenSSL) Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 376575 MySQL Workbench Denial of Service (DoS) Vulnerability (cpuapr2022)
  • 376603 FortiGate FortiManager and FortiAnalyzer Denial of Service (DoS) Vulnerability (FG-IR-22-059)
  • 376607 Apple macOS Security Update 2022-004 Catalina (HT213255)
  • 376608 Apple MacOS Big Sur 11.6.6 Not Installed (HT213256)
  • 376612 Apple macOS Monterey 12.4 Not Installed (HT213257)
  • 376879 Alibaba Cloud Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ALINUX2-SA-2022:0019)
  • 377105 Alibaba Cloud Linux Security Update for Open Secure Sockets Layer (OpenSSL) (ALINUX3-SA-2022:0025)
  • 377361 Alibaba Cloud Linux Security Update for compat-openssl10 (ALINUX3-SA-2022:0130)
  • 379452 IBM Cognos Analytics Multiple Vulnerabilities (7123154)
  • 38864 Pulse Connect Secure Denial of Service (DoS) Vulnerability (SA45100)
  • 390281 Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2023-0012)
  • 390284 Oracle Managed Virtualization (VM) Server for x86 Security Update for Open Secure Sockets Layer (OpenSSL) (OVMSA-2023-0013)
  • 43969 Juniper Network Operating System (Junos OS) Denial of Service (DoS) Vulnerability (JSA70180)
  • 44005 Arista EOS Denial of Service (DoS) Vulnerability (SA0075)
  • 44076 FortiOS - Vulnerability in Open Secure Sockets Layer (OpenSSL) Library (FG-IR-22-059)
  • 500500 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
  • 500568 Alpine Linux Security Update for Open Secure Sockets Layer (OpenSSL)
  • 500767 Alpine Linux Security Update for openssl
  • 501167 Alpine Linux Security Update for openssl
  • 501747 Alpine Linux Security Update for libretls
  • 501874 Alpine Linux Security Update for libressl
  • 501967 Alpine Linux Security Update for libretls
  • 501986 Alpine Linux Security Update for Open Secure Sockets Layer3 (OpenSSL3)
  • 502114 Alpine Linux Security Update for libressl
  • 502138 Alpine Linux Security Update for openjdk11
  • 502221 Alpine Linux Security Update for libretls
  • 502230 Alpine Linux Security Update for Open Secure Sockets Layer3 (OpenSSL3)
  • 502751 Alpine Linux Security Update for openssl
  • 502905 Alpine Linux Security Update for openssl1.1-compat
  • 504077 Alpine Linux Security Update for libretls
  • 506114 Alpine Linux Security Update for lighthouse
  • 590870 Mitsubishi Electric MELSOFT iQ AppPortal Multiple Vulnerabilities (ICSA-22-132-02)
  • 590999 PHOENIX CONTACT FL MGUARD, TC MGUARD, mGuard Device Manager and FL WLAN devices Vulnerability (VDE-2022-013)
  • 591161 Siemens SIMATIC STEP 7,SIMANTIC STEP 7 (TIA Admin),SIMATIC NET PC Software,SIMANTIC Logon,SINEC NMS and Telecontrol Server Basic Open Secure Sockets Layer (OpenSSL) Denial of Service (DoS) Vulnerability (SSA-712929)
  • 591170 Mitsubishi Electric GT SoftGOT2000 Multiple Vulnerabilities (ICSA-22-221-01)
  • 591184 Mitsubishi Electric Multiple Factory Automation Products (Update C) Multiple Vulnerabilities (ICSA-22-221-01)
  • 591311 Bosch Rexroth PRA-ES8P2S Ethernet-Switch Multiple Vulnerabilities (BOSCH-SA-247053-BT)
  • 671551 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1578)
  • 671559 EulerOS Security Update for compat-openssl10 (EulerOS-SA-2022-1559)
  • 671598 EulerOS Security Update for openssl111d (EulerOS-SA-2022-1547)
  • 671607 EulerOS Security Update for openssl098e (EulerOS-SA-2022-1546)
  • 671615 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1545)
  • 671667 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1753)
  • 671686 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL)098e (EulerOS-SA-2022-1754)
  • 671730 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1812)
  • 671732 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1795)
  • 671779 EulerOS Security Update for shim (EulerOS-SA-2022-1853)
  • 671785 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1873)
  • 671797 EulerOS Security Update for shim (EulerOS-SA-2022-1877)
  • 671825 EulerOS Security Update for Open Secure Sockets Layer (OpenSSL) (EulerOS-SA-2022-1849)
  • 672446 EulerOS Security Update for shim (EulerOS-SA-2022-2831)
  • 672447 EulerOS Security Update for linux-sgx (EulerOS-SA-2022-2852)
  • 672458 EulerOS Security Update for shim (EulerOS-SA-2022-2857)
  • 690814 Free Berkeley Software Distribution (FreeBSD) Security Update for Open Secure Sockets Layer (OpenSSL) (ea05c456-a4fd-11ec-90de-1c697aa5a594)
  • 710638 Gentoo Linux Open Secure Sockets Layer (OpenSSL) Multiple Vulnerabilities (GLSA 202210-02)
  • 730419 McAfee Web Gateway Denial of Service (DoS) Vulnerabilities (WP-4554)
  • 730420 Palo Alto Networks (PAN-OS) Impact of the Open Secure Sockets Layer (OpenSSL) Infinite Loop Vulnerability (PAN-190175, PAN-190223)
  • 731052 Dell EMC iDRAC Open Secure Sockets Layer (OpenSSL) Vulnerability (DSA-2022-154)
  • 751879 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_0_0 (OpenSSL-1_0_0) (SUSE-SU-2022:0857-1)
  • 751880 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2022:0854-1)
  • 751881 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 (OpenSSL-1_1) (SUSE-SU-2022:0851-1)
  • 751882 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_0_0 (OpenSSL-1_0_0) (SUSE-SU-2022:0856-1)
  • 751886 SUSE Enterprise Linux Security Update for Compat-Open Secure Sockets Layer098 (Compat-OpenSSL098) (SUSE-SU-2022:0859-1)
  • 751887 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 (OpenSSL-1_1) (SUSE-SU-2022:0853-1)
  • 751888 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer-1_1 (OpenSSL-1_1) (SUSE-SU-2022:0860-1)
  • 751893 OpenSUSE Security Update for openssl-1_0_0 (openSUSE-SU-2022:0856-1)
  • 752086 SUSE Enterprise Linux Security Update for nodejs14 (SUSE-SU-2022:1462-1)
  • 752088 SUSE Enterprise Linux Security Update for nodejs12 (SUSE-SU-2022:1461-1)
  • 753099 SUSE Enterprise Linux Security Update for Open Secure Sockets Layer (OpenSSL) (SUSE-SU-2022:14915-1)
  • 87523 Apache Httpd Server Open Secure Sockets Layer (OpenSSL) Denial of Service (DoS) Vulnerability
  • 900761 Common Base Linux Mariner (CBL-Mariner) Security Update for Open Secure Sockets Layer (OpenSSL) (9049)
  • 900949 Common Base Linux Mariner (CBL-Mariner) Security Update for Open Secure Sockets Layer (OpenSSL) (9051-1)
  • 940475 AlmaLinux Security Update for Open Secure Sockets Layer (OpenSSL) (ALSA-2022:1065)
  • 940592 AlmaLinux Security Update for compat-openssl10 (ALSA-2022:5326)
  • 960119 Rocky Linux Security Update for Open Secure Sockets Layer (OpenSSL) (RLSA-2022:1065)
  • 960339 Rocky Linux Security Update for compat-openssl10 (RLSA-2022:5326)
  • 960469 Rocky Linux Security Update for compat-openssl11 (RLSA-2022:4899)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report