CVE-2019-1559

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q).

CVSS v3.0 5.9 MEDIUM
CVSS v2.0 4.3 MEDIUM

5.9^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.openssl.org/news/secadv/20190226.txt	Vendor Advisory
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e9bbefbf0f24c57645e7ad6a5a71ae649d18ac8e	Patch Third Party Advisory
https://usn.ubuntu.com/3899-1/	Third Party Advisory
http://www.securityfocus.com/bid/107174	Third Party Advisory VDB Entry
https://www.debian.org/security/2019/dsa-4400	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/03/msg00003.html	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20190301-0002/	Broken Link Third Party Advisory
https://security.netapp.com/advisory/ntap-20190301-0001/	Patch Third Party Advisory
https://security.gentoo.org/glsa/201903-10	Third Party Advisory
https://support.f5.com/csp/article/K18549143	Third Party Advisory
https://www.tenable.com/security/tns-2019-02	Patch Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00041.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00019.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00047.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00046.html	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20190423-0002/	Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html	Patch Third Party Advisory
https://www.tenable.com/security/tns-2019-03	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10282	Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00049.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00080.html	Mailing List Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	Patch Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2304	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2437	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2439	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2471	Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EWC42UXL5GHTU5G77VKBF6JYUUNGSHOM/	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZBEV5QGDRFUZDMNECFXUSN5FMYOZDE4V/	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y3IVFGSERAZLNJCK35TEM2R4726XIH3Z/	Mailing List Third Party Advisory
https://support.f5.com/csp/article/K18549143?utm_source=f5support&utm_medium=RSS	Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html	Patch Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3929	Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3931	Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2020.html	Third Party Advisory
https://usn.ubuntu.com/4376-2/	Broken Link
https://www.oracle.com/security-alerts/cpujan2021.html	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::

Configuration 3 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:9.0:::::::*

Configuration 4 (hide)

OR	cpe:2.3:a:netapp:hyper_converged_infrastructure:-:::::::*
	cpe:2.3:a:netapp:cloud_backup:-:::::::*
	cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*
	cpe:2.3:a:netapp:element_software:-:::::::*
	cpe:2.3:a:netapp:snapdrive:-:::::unix::
	cpe:2.3:a:netapp:snapcenter:-:::::::*
	cpe:2.3:a:netapp:storage_automation_store:-:::::::*
	cpe:2.3:a:netapp:ontap_select_deploy:-:::::::*
	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:::::::*
	cpe:2.3:a:netapp:active_iq_unified_manager::::::windows::*
	cpe:2.3:a:netapp:active_iq_unified_manager::::::vmware_vsphere::*
	cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-:::::::*
	cpe:2.3:a:netapp:hci_management_node:-:::::::*
	cpe:2.3:a:netapp:oncommand_insight:-:::::::*
	cpe:2.3:a:netapp:oncommand_unified_manager:-:::::::*
	cpe:2.3:a:netapp:oncommand_unified_manager:-:::::vsphere::
	cpe:2.3:a:netapp:oncommand_unified_manager_core_package:-:::::::*
	cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
	cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*
	cpe:2.3:a:netapp:service_processor:-:::::::*
	cpe:2.3:a:netapp:smi-s_provider:-:::::::*
	cpe:2.3:a:netapp:snapdrive:-:::::windows::
	cpe:2.3:a:netapp:snapprotect:-:::::::*
	cpe:2.3:a:netapp:solidfire:-:::::::*
	cpe:2.3:a:netapp:storagegrid:-:::::::*
	cpe:2.3:a:netapp:storagegrid::::::::
	cpe:2.3:h:netapp:hci_compute_node:-:::::::*
	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::windows::
	cpe:2.3:a:netapp:altavault:-:::::::*

Configuration 5 (hide)

OR	cpe:2.3:a:f5:traffix_signaling_delivery_controller::::::::
	cpe:2.3:a:f5:traffix_signaling_delivery_controller:4.4.0:::::::*
	cpe:2.3:a:f5:big-iq_centralized_management::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager::::::::
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager::::::::
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager::::::::
	cpe:2.3:a:f5:big-ip_application_acceleration_manager::::::::
	cpe:2.3:a:f5:big-ip_application_acceleration_manager::::::::
	cpe:2.3:a:f5:big-ip_application_acceleration_manager::::::::
	cpe:2.3:a:f5:big-ip_analytics::::::::
	cpe:2.3:a:f5:big-ip_analytics::::::::
	cpe:2.3:a:f5:big-ip_analytics::::::::
	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
	cpe:2.3:a:f5:big-ip_application_security_manager::::::::
	cpe:2.3:a:f5:big-ip_application_security_manager::::::::
	cpe:2.3:a:f5:big-ip_application_security_manager::::::::
	cpe:2.3:a:f5:big-ip_edge_gateway::::::::
	cpe:2.3:a:f5:big-ip_edge_gateway::::::::
	cpe:2.3:a:f5:big-ip_edge_gateway::::::::
	cpe:2.3:a:f5:big-ip_fraud_protection_service::::::::
	cpe:2.3:a:f5:big-ip_fraud_protection_service::::::::
	cpe:2.3:a:f5:big-ip_fraud_protection_service::::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_link_controller::::::::
	cpe:2.3:a:f5:big-ip_link_controller::::::::
	cpe:2.3:a:f5:big-ip_link_controller::::::::
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager::::::::
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager::::::::
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager::::::::
	cpe:2.3:a:f5:big-ip_webaccelerator::::::::
	cpe:2.3:a:f5:big-ip_webaccelerator::::::::
	cpe:2.3:a:f5:big-ip_webaccelerator::::::::
	cpe:2.3:a:f5:big-ip_domain_name_system::::::::
	cpe:2.3:a:f5:big-ip_domain_name_system::::::::
	cpe:2.3:a:f5:big-ip_domain_name_system::::::::
	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
	cpe:2.3:a:f5:big-ip_advanced_firewall_manager::::::::
	cpe:2.3:a:f5:big-ip_analytics::::::::
	cpe:2.3:a:f5:big-ip_application_acceleration_manager::::::::
	cpe:2.3:a:f5:big-ip_application_security_manager::::::::
	cpe:2.3:a:f5:big-ip_domain_name_system::::::::
	cpe:2.3:a:f5:big-ip_edge_gateway::::::::
	cpe:2.3:a:f5:big-ip_fraud_protection_service::::::::
	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_link_controller::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_policy_enforcement_manager::::::::
	cpe:2.3:a:f5:big-ip_webaccelerator::::::::
	cpe:2.3:a:f5:big-iq_centralized_management::::::::

Configuration 6 (hide)

cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:*

Configuration 7 (hide)

OR	cpe:2.3:o:opensuse:leap:42.3:::::::*
	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:15.1:::::::*

Configuration 8 (hide)

AND

cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:cn1610:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:netapp:a320_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a320:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:netapp:c190_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:c190:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:netapp:a220_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a220:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:netapp:fas2720_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:fas2720:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:netapp:fas2750_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:fas2750:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:netapp:a800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:a800:-:*:*:*:*:*:*:*

Configuration 15 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:29:::::::*
	cpe:2.3:o:fedoraproject:fedora:30:::::::*
	cpe:2.3:o:fedoraproject:fedora:31:::::::*

Configuration 16 (hide)

OR	cpe:2.3:a:mcafee:data_exchange_layer::::::::
	cpe:2.3:a:mcafee:agent::::::::
	cpe:2.3:a:mcafee:threat_intelligence_exchange_server::::::::
	cpe:2.3:a:mcafee:web_gateway::::::::

Configuration 17 (hide)

AND

cpe:2.3:a:redhat:jboss_enterprise_web_server:5.0.0:*:*:*:*:*:*:*

OR	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*

Configuration 18 (hide)

AND

OR	cpe:2.3:a:redhat:virtualization_host:4.0:::::::*
	cpe:2.3:a:redhat:virtualization:4.0:::::::*

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Configuration 19 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*

Configuration 20 (hide)

OR	cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2:::::::*
	cpe:2.3:a:oracle:api_gateway:11.1.2.4.0:::::::*
	cpe:2.3:a:oracle:business_intelligence:11.1.1.9.0::::enterprise:::
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.55:::::::*
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:::::::*
	cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0::::enterprise:::
	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:::::::*
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
	cpe:2.3:a:oracle:secure_global_desktop:5.4:::::::*
	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0::::enterprise:::
	cpe:2.3:a:oracle:communications_diameter_signaling_router:8.0.0:::::::*
	cpe:2.3:a:oracle:communications_diameter_signaling_router:8.1:::::::*
	cpe:2.3:a:oracle:communications_diameter_signaling_router:8.2:::::::*
	cpe:2.3:a:oracle:communications_diameter_signaling_router:8.3:::::::*
	cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:::::::*
	cpe:2.3:a:oracle:communications_session_border_controller:8.1.0:::::::*
	cpe:2.3:a:oracle:communications_session_border_controller:8.3:::::::*
	cpe:2.3:a:oracle:enterprise_manager_base_platform:12.1.0.5.0:::::::*
	cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.0.0.0:::::::*
	cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0.0:::::::*
	cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0:::::::*
	cpe:2.3:a:oracle:jd_edwards_world_security:a9.3:::::::*
	cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*
	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:services_tools_bundle:19.2:::::::*
	cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4:::::::*
	cpe:2.3:a:oracle:communications_performance_intelligence_center:10.4.0.2:::::::*
	cpe:2.3:a:oracle:communications_session_border_controller:7.4:::::::*
	cpe:2.3:a:oracle:communications_session_border_controller:8.2:::::::*
	cpe:2.3:a:oracle:communications_session_router:7.4:::::::*
	cpe:2.3:a:oracle:communications_session_router:8.0:::::::*
	cpe:2.3:a:oracle:communications_session_router:8.1:::::::*
	cpe:2.3:a:oracle:communications_session_router:8.2:::::::*
	cpe:2.3:a:oracle:communications_session_router:8.3:::::::*
	cpe:2.3:a:oracle:communications_unified_session_manager:7.3.5:::::::*
	cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:::::::*
	cpe:2.3:a:oracle:endeca_server:7.7.0:::::::*
	cpe:2.3:a:oracle:jd_edwards_world_security:a9.3.1:::::::*
	cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::
	cpe:2.3:a:oracle:mysql_enterprise_monitor::::::::
	cpe:2.3:a:oracle:mysql_workbench::::::::

Configuration 21 (hide)

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::

Configuration 22 (hide)

OR	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*

Information

Published : 2019-02-27 15:29

Updated : 2022-08-19 04:14

NVD link : CVE-2019-1559

Mitre link : CVE-2019-1559

JSON object : View

CWE

CWE-203

Observable Discrepancy

Products Affected

netapp

cloud_backup
active_iq_unified_manager
ontap_select_deploy_administration_utility
element_software
oncommand_unified_manager_core_package
a320_firmware
c190_firmware
altavault
fas2750_firmware
fas2750
snapprotect
solidfire
smi-s_provider
hci_management_node
hyper_converged_infrastructure
steelstore_cloud_integrated_storage
a220
oncommand_insight
a220_firmware
oncommand_workflow_automation
a800
fas2720_firmware
service_processor
cn1610
storagegrid
snapdrive
oncommand_unified_manager
ontap_select_deploy
storage_automation_store
fas2720
clustered_data_ontap_antivirus_connector
snapcenter
a320
cn1610_firmware
hci_compute_node
santricity_smi-s_provider
c190
a800_firmware

big-ip_webaccelerator
big-ip_fraud_protection_service
big-ip_domain_name_system
traffix_signaling_delivery_controller
big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_edge_gateway
big-ip_global_traffic_manager
big-ip_access_policy_manager
big-ip_policy_enforcement_manager
big-ip_link_controller
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_security_manager
big-iq_centralized_management

mcafee

web_gateway
data_exchange_layer
agent
threat_intelligence_exchange_server

oracle

mysql_enterprise_monitor
jd_edwards_world_security
enterprise_manager_base_platform
endeca_server
mysql_workbench
mysql
secure_global_desktop
communications_session_router
enterprise_manager_ops_center
communications_diameter_signaling_router
business_intelligence
communications_session_border_controller
services_tools_bundle
communications_unified_session_manager
peoplesoft_enterprise_peopletools
communications_performance_intelligence_center
api_gateway
jd_edwards_enterpriseone_tools

fedoraproject

fedora

debian

debian_linux

nodejs

node.js

redhat

virtualization_host
enterprise_linux_server
jboss_enterprise_web_server
enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation
virtualization

openssl

openssl

tenable

nessus

canonical

ubuntu_linux

paloaltonetworks

pan-os

opensuse

leap

5.9 /10

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.3 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2019-1559

5.9^/10

4.3^/10

Attach tags to `CVE-2019-1559`