CVE-2022-3996 — Improper Locking in Openssl

CWE-667 — Improper Locking CWE-609 — Double-Checked Locking12 documents9 sources

Severity

7.5HIGHNVD

EPSS

0.2%

top 61.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openssl Paloalto Cortex Data Paloalto Cortex XDR +7 more

Timeline

PublishedDec 13

Latest updateApr 25

Description

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems (most widely: Windows) this results in a denial of service when the affected process hangs. Policy processing being enabled on a publicly facing server is not considered to be a common setup. Policy processing is enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages14 packages

▶Alpineopenssl/openssl< 3.0.7-r2+6

▶Debianopenssl/openssl< 3.0.7-2+2

▶Ubuntuopenssl/openssl< 1.1.1-1ubuntu2.1~18.04.22+4

▶CVEListV5openssl/openssl3.0.0 — 3.0.7

▶NVDopenssl/openssl3.0.0 — 3.0.7

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

openssl, openssl1.0 vulnerabilities↗2023-04-25

▶

OSV

Denial of service by double-checked locking in openssl-src↗2022-12-13

▶

CVEList

X.509 Policy Constraints Double Locking↗2022-12-13

▶

OSV

CVE-2022-3996: If an X↗2022-12-13

▶

OSV

CVE-2022-3996: If an X↗2022-12-13

▶

📋Vendor Advisories

Ubuntu

OpenSSL vulnerabilities↗2023-04-25

▶

Palo Alto

PAN-SA-2022-0007 Impact of OpenSSL 3.0 Vulnerability CVE-2022-3996↗2022-12-23

▶

Red Hat

openssl: double locking leads to denial of service↗2022-12-13

▶

Microsoft

X.509 Policy Constraints Double Locking↗2022-12-13

▶

Debian

CVE-2022-3996: openssl - If an X.509 certificate contains a malformed policy constraint and policy proces...↗2022

▶