CVE-2022-0778
Severity
7.5HIGH
EPSS
7.8%
top 8.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 15
Latest updateNov 26
Description
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to veri…
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6
Affected Packages8 packages
▶CVEListV5openssl/opensslFixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc), Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m), Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1)+2
Also affects: Debian Linux 10.0, 11.0, 9.0, Fedora 34, 36