Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (VPN)  >   OpenSSL Vendors:
(NetBSD Issues Fix) OpenSSL DTLS Processing Bugs Let Remote Users Deny Service and Execute Arbitrary Code
SecurityTracker Alert ID:  1030372
SecurityTracker URL:
CVE Reference:   CVE-2014-0195, CVE-2014-0221   (Links to External Site)
Date:  Jun 10 2014
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to versions 0.9.8za, 1.0.0m, 1.0.1h
Description:   Two vulnerabilities were reported in OpenSSL. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions.

A remote user can send specially crafted DTLS fragments to the target DTLS client or server to trigger a buffer overflow and execute arbitrary code on the target system [CVE-2014-0195]. Only applications using OpenSSL as a DTLS client or server are affected.

The vendor was notified on April 23, 2014.

Juri Aedla reported this vulnerability (via HP's ZDI).

A remote server can send a specially crafted DTLS handshake to the target DTLS client to trigger a recursion flaw and cause the target service to crash [CVE-2014-0221]. Only applications using OpenSSL as a DTLS client are affected.

The vendor was notified on May 9, 2014.

Imre Rad (Search-Lab Ltd.) reported this vulnerability.

Impact:   A remote user can execute arbitrary code on the target system.

A remote user can cause the target service to crash.

Solution:   NetBSD has issued a fix.

The NetBSD advisory is available at:

Vendor URL: (Links to External Site)
Cause:   Boundary error, State error
Underlying OS:  UNIX (NetBSD)
Underlying OS Comments:  5.1, 5.2, 6.0, 6.1

Message History:   This archive entry is a follow-up to the message listed below.
Jun 5 2014 OpenSSL DTLS Processing Bugs Let Remote Users Deny Service and Execute Arbitrary Code

 Source Message Contents

Subject:  NetBSD Security Advisory 2014-006: Multiple OpenSSL vulnerabilities

Hash: SHA1

		NetBSD Security Advisory 2014-006

Topic:		Multiple OpenSSL vulnerabilities

Version:	NetBSD-current:		June 5th, 2014
		NetBSD 6.1 - 6.1.4:	affected
		NetBSD 6.0 - 6.0.5:	affected
		NetBSD 5.1 - 5.1.4:	affected
		NetBSD 5.2 - 5.2.2:	affected

Severity:	MitM, Remote Code Execution, Remote DoS

Fixed:		NetBSD-current:		June 5th, 2014
		NetBSD-6-0 branch:	June 6th, 2014
		NetBSD-6-1 branch:	June 6th, 2014
		NetBSD-6 branch:	June 6th, 2014
		NetBSD-5-2 branch:	June 6th, 2014
		NetBSD-5-1 branch:	June 6th, 2014
		NetBSD-5 branch:	June 6th, 2014

Teeny versions released later than the fix date will contain the fix.

Please note that NetBSD releases prior to 5.1 are no longer supported.
It is recommended that all users upgrade to a supported release.


SSL/TLS MITM vulnerability (CVE-2014-0224)
DTLS recursion flaw (CVE-2014-0221)
DTLS invalid fragment vulnerability (CVE-2014-0195)
Anonymous ECDH denial of service (CVE-2014-3470)

only in NetBSD-6 and NetBSD-current:
SSL_MODE_RELEASE_BUFFERS NULL pointer dereference (CVE-2014-0198)
SSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298)

only in NetBSD-5 (previously fixed in NetBSD-6 and NetBSD-current):
Recovering OpenSSL ECDSA Nonces Using the FLUSH+RELOAD Cache
Side-channel Attack (CVE-2014-0076)

Technical Details


Solutions and Workarounds

Update the OpenSSL libraries and make sure the old libssl and libcrypto
are no longer used.

- From source:
- ------------
Update src and rebuild and install.
Note: OpenSSL in NetBSD-6 and NetBSD-current has been updated to
version 1.0.1h; updating the entire src tree is recommended.

- From tarballs:
- --------------
The NetBSD build cluster is currently undergoing hardware maintenance;
it may be a while before builds run again.

To obtain fixed binaries, fetch the appropriate base.tgz and comp.tgz
from a daily build later than the fix dates, from<rel>/<date>/<arch>/binary/sets/
with a date 20140607* or larger, and your release version and architecture
and then extract the files:

Shared libraries:

tar xzpf base.tgz \*libssl\* \*libcrypto\*

And static libraries and linker config files:

tar xzpf comp.tgz \*libssl\* \*libcrypto\*

Get the fixed library into use
- ------------------------------
Since the vulnerability is in a shared library, getting the old
library purged and the fixed one into use requires restarting
all programs that load libssl and libcrypto.
The easiest way to do this is to reboot the system.
Another method: using /bin/sh,
ps ax -o pid | (while read pid; do \
	pmap $pid | egrep '(libssl|libcrypto)' && echo found $pid ;\
will find non-chrooted programs that have the affected libraries open;
restart them. sshd will not show up in this list since it runs chrooted
and re-exec'ed but also needs to be restartet.
ldd <programname> will show the shared libraries a programs is wont to use.

Lastly, remove the vulnerable library to make sure it won't get used
rm /usr/lib/

Fixed versions
- --------------
files relative to src/crypto/external/bsd/openssl/dist/ssl

branch      d1_both.c       s3_clnt.c   s3_pkt.c    s3_srvr.c    ssl3.h
- ----------  --------------- ----------- ----------- ------------ ----------
HEAD         1.9         1.16        1.16         1.6

files relative to crypto/dist/openssl/ssl

branch      d1_both.c    s3_clnt.c     s3_pkt.c     s3_srvr.c     ssl3.h
- ----------  -----------  ------------  -----------  ------------  --------

files relative to crypto/dist/openssl/crypto

branch      bn/bn.h    bn/bn_lib.c  ec/ec2_mult.c
- ----------  ---------  -----------  -------------

Thanks To

The OpenSSL team acknowledges:
KIKUCHI Masashi (Lepidum Co. Ltd.) for CVE-2014-0224
Imre Rad (Search-Lab Ltd.) for CVE-2014-0221
Jüri Aedla for CVE-2014-0195
Felix Gröbert and Ivan Fratrić at Google for CVE-2014-3470
Yuval Yarom and Naomi Benger for CVE-2014-0076
for discovering the vulnerabilities, and
Stephen Henson and Matt Caswell of OpenSSL and KIKUCHI Masashi
for developing fixes.

Revision History

	2014-06-09	Initial release

More Information

Advisories may be updated as new information becomes available.
The most recent version of this advisory (PGP signed) can be found at

Information about NetBSD and NetBSD security can be found at and .

Copyright 2014, The NetBSD Foundation, Inc.  All Rights Reserved.
Redistribution permitted only in full, unmodified form.

$NetBSD: NetBSD-SA2014-006.txt,v 1.1 2014/06/09 19:22:28 tonnerre Exp $

Version: GnuPG v1


Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, LLC