OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
BID:105897
CVE-2018-5407 |Info
OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
| Bugtraq ID: | 105897 |
| Class: | Design Error |
| CVE: |
CVE-2018-5407 |
| Remote: | No |
| Local: | Yes |
| Published: | Oct 30 2018 12:00AM |
| Updated: | Jan 17 2019 10:00AM |
| Credit: | Billy Bob Brumley, Cesar Pereida Garcia, Sohaib ul Hassan, Nicola Tuveri (Tampere University of Technology; Finland), and Alejandro Cabrera Aldaya (Universidad Tecnologica de la Habana CUJAE; Cuba) |
| Vulnerable: |
Tenable Nessus 8.1 Tenable Nessus 8.0 Tenable Nessus 7.2.2 Tenable Nessus 7.2.1 Tenable Nessus 7.2 Tenable Nessus 7.1.3 Tenable Nessus 7.1.2 Tenable Nessus 7.1.1 Tenable Nessus 7.1 Tenable Nessus 6.9.3 Tenable Nessus 6.9 Tenable Nessus 6.8 Tenable Nessus 6.7 Tenable Nessus 6.6.2 Tenable Nessus 6.6.1 Tenable Nessus 6.6 Tenable Nessus 6.5.6 Tenable Nessus 6.5.5 Tenable Nessus 6.5.4 Tenable Nessus 6.5.3 Tenable Nessus 6.5.2 Tenable Nessus 6.5.1 Tenable Nessus 6.5 Tenable Nessus 6.4.3 Tenable Nessus 6.4.2 Tenable Nessus 6.4.1 Tenable Nessus 6.4 Tenable Nessus 6.3.7 Tenable Nessus 6.3.6 Tenable Nessus 6.3.5 Tenable Nessus 6.3.4 Tenable Nessus 6.3.3 Tenable Nessus 6.3.2 Tenable Nessus 6.3.1 Tenable Nessus 6.3 Tenable Nessus 6.2.1 Tenable Nessus 6.2 Tenable Nessus 6.1.2 Tenable Nessus 6.1.1 Tenable Nessus 6.1 Tenable Nessus 6.0.2 Tenable Nessus 6.0.1 Tenable Nessus 6.0 Tenable Nessus 5.2.7 Tenable Nessus 5.2.4 Tenable Nessus 5.2.3 Tenable Nessus 1.0.1 Tenable Nessus 7.0 Tenable Nessus 6.9.2 Tenable Nessus 6.9.1 Tenable Nessus 4.4.1 Tenable Nessus 3.0.3 Redhat Enterprise Linux 7 Redhat Enterprise Linux 6 Redhat Enterprise Linux 5 Oracle Solaris 11.4 Oracle Solaris 11.3 Oracle Solaris 10 OpenSSL Project OpenSSL 1.0.2 OpenSSL Project OpenSSL 1.1.0h OpenSSL Project OpenSSL 1.1.0g OpenSSL Project OpenSSL 1.1.0f OpenSSL Project OpenSSL 1.1.0e OpenSSL Project OpenSSL 1.1.0d OpenSSL Project OpenSSL 1.1.0c OpenSSL Project OpenSSL 1.1.0b OpenSSL Project OpenSSL 1.1.0a OpenSSL Project OpenSSL 1.0.2p OpenSSL Project OpenSSL 1.0.2o OpenSSL Project OpenSSL 1.0.2n OpenSSL Project OpenSSL 1.0.2m OpenSSL Project OpenSSL 1.0.2l-git OpenSSL Project OpenSSL 1.0.2l OpenSSL Project OpenSSL 1.0.2k OpenSSL Project OpenSSL 1.0.2j OpenSSL Project OpenSSL 1.0.2i OpenSSL Project OpenSSL 1.0.2h OpenSSL Project OpenSSL 1.0.2g OpenSSL Project OpenSSL 1.0.2f OpenSSL Project OpenSSL 1.0.2e OpenSSL Project OpenSSL 1.0.2d OpenSSL Project OpenSSL 1.0.2c OpenSSL Project OpenSSL 1.0.2b OpenSSL Project OpenSSL 1.0.2a OpenSSL Project OpenSSL 1.0.2-1.0.2o OpenSSL Project OpenSSL 1.0.2 Beta1 IBM Vios 2.2.3 IBM Vios 2.2.1 4 IBM Vios 2.2 IBM Vios 2.2.4.0 IBM Vios 2.2.3.50 IBM Vios 2.2.3.4 IBM Vios 2.2.3.3 IBM Vios 2.2.3.2 IBM Vios 2.2.3.0 IBM Vios 2.2.2.6 IBM Vios 2.2.2.5 IBM Vios 2.2.2.4 IBM Vios 2.2.2.0 IBM Vios 2.2.1.9 IBM Vios 2.2.1.8 IBM Vios 2.2.1.3 IBM Vios 2.2.1.1 IBM Vios 2.2.1.0 IBM Vios 2.2.0.13 IBM Vios 2.2.0.12 IBM Vios 2.2.0.11 IBM Vios 2.2.0.10 IBM Aix 7.2 IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 |
| Not Vulnerable: |
Tenable Nessus 8.1.1 OpenSSL Project OpenSSL 1.1.1 OpenSSL Project OpenSSL 1.1.0i OpenSSL Project OpenSSL 1.0.2q |
Discussion
OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
OpenSSL is prone to a local information-disclosure vulnerability.
Local attackers can exploit this issue to obtain sensitive information. This may aid in further attacks.
OpenSSL is prone to a local information-disclosure vulnerability.
Local attackers can exploit this issue to obtain sensitive information. This may aid in further attacks.
Exploit / POC
OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.
Solution / Fix
OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
References:
References:
- bbbrumley/portsmash (github.com)
- OpenSSL CHANGES (OpenSSL)
- OpenSSL Homepage (OpenSSL)
- Bug 1645695 - (CVE-2018-5407) CVE-2018-5407 openssl: Intel processor side-chann (Redhat)
- CVE-2018-5407 (Redhat)
- Nessus 8.1.1 Fixes Multiple Third-party Vulnerabilities (Tenable)
- OpenSSL 1.0.2 Series Release Notes (OpenSSL)
- OpenSSL Security Advisory [12 November 2018] (OpenSSL)
- Oracle Solaris Third Party Bulletin - January 2019 (Oracle)
- Security Bulletin: Vulnerabilities in OpenSSL affect AIX (CVE-2018-0734, CV (IBM)