CVE-2018-0734

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
openssl	21.04 hirsute	Fixed 1.1.1a-1ubuntu2
	20.10 groovy	Fixed 1.1.1a-1ubuntu2
	20.04 LTS focal	Fixed 1.1.1a-1ubuntu2
	19.10 eoan	Fixed 1.1.1a-1ubuntu2
	19.04 disco	Fixed 1.1.1a-1ubuntu2
	18.10 cosmic	Fixed 1.1.1-1ubuntu2.1
	18.04 LTS bionic	Fixed 1.1.0g-2ubuntu4.3
	16.04 LTS xenial	Fixed 1.0.2g-1ubuntu4.14
	14.04 LTS trusty	Fixed 1.0.1f-1ubuntu2.27
openssl098	21.04 hirsute	Not in release
	20.10 groovy	Not in release
	20.04 LTS focal	Not in release
	19.10 eoan	Not in release
	19.04 disco	Not in release
	18.10 cosmic	Not in release
	18.04 LTS bionic	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
openssl1.0	21.04 hirsute	Not in release
	20.10 groovy	Not in release
	20.04 LTS focal	Not in release
	19.10 eoan	Not in release
	19.04 disco	Not in release
	18.10 cosmic	Fixed 1.0.2n-1ubuntu6.1
	18.04 LTS bionic	Fixed 1.0.2n-1ubuntu5.2
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release

Notes

mdeslaur

there are other similar commits in crypto/dsa/dsa_ossl.c that likely need backporting also. upstream advisory was ammended with more commits

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
openssl	Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=43e6a58d4991a451daf4891ff05a48735df871ac Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=ebf65dbe1a67682d7e1f58db9c53ef737fb37f32 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=880d1c76ed9916cddb97fe05fb4c144f0f6f1012 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=f1b12b8713a739f27d74e6911580b2e70aea2fa4 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=8abfe72e8c1de1b95f50aa0d9134803b4d00070f Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=6039651c43944cf4633483a74c2ef3a6b8c0c6c0 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=84862c0979737b591acb689aef41ae2644176f32 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=ef11e19d1365eea2b1851e6f540a0bf365d303e7 Upstream: https://git.openssl.org/?p=openssl.git;a=commit;h=26d7fce13d469f8d1a1b42131467ed4a65f8137b

Package

Patch details

openssl

Severity score breakdown

Parameter	Value
Base score	5.9 · Medium
Attack vector	Network
Attack complexity	High
Privileges required	None
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	None
Availability impact	None
Vector	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

References

Related Ubuntu Security Notices (USN)

USN-3840-1
OpenSSL vulnerabilities
6 December 2018

Cvss 3 Severity Score

Status

Notes

mdeslaur

Patch details

Severity score breakdown

References

Related Ubuntu Security Notices (USN)

Other references