CVE-2016-2182 - The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate di

CVE-2016-2182

Summary

The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0 does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors.

References

Vulnerable Configurations

cpe:2.3:a:hp:icewall_sso:10.0:*:*:*:certd:*:*:*
cpe:2.3:a:hp:icewall_sso:10.0:*:*:*:certd:*:*:*
cpe:2.3:a:hp:icewall_mcrp:3.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:icewall_mcrp:3.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:icewall_sso:10.0:*:*:*:dfw:*:*:*
cpe:2.3:a:hp:icewall_sso:10.0:*:*:*:dfw:*:*:*
cpe:2.3:a:hp:icewall_sso_agent_option:10.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:icewall_sso_agent_option:10.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:icewall_federation_agent:3.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:icewall_federation_agent:3.0:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1m:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1m:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2a:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1j:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1j:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1h:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2e:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1r:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1r:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2b:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1c:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1g:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2g:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2g:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1a:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2h:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1d:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1t:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1t:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2c:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1p:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1p:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1k:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1k:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1b:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1n:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1n:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1q:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1q:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1e:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1l:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1l:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1f:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1s:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1s:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1o:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1o:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2f:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1i:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1i:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*
cpe:2.3:a:openssl:openssl:1.0.2d:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:5:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:5:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:6:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:6:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 13-12-2022 - 12:15)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa
id RHSA-2016:1940
rhsa
id RHSA-2018:2185
rhsa
id RHSA-2018:2186
rhsa
id RHSA-2018:2187

rpms

openssl-0:1.0.1e-48.el6_8.3
openssl-1:1.0.1e-51.el7_2.7
openssl-debuginfo-0:1.0.1e-48.el6_8.3
openssl-debuginfo-1:1.0.1e-51.el7_2.7
openssl-devel-0:1.0.1e-48.el6_8.3
openssl-devel-1:1.0.1e-51.el7_2.7
openssl-libs-1:1.0.1e-51.el7_2.7
openssl-perl-0:1.0.1e-48.el6_8.3
openssl-perl-1:1.0.1e-51.el7_2.7
openssl-static-0:1.0.1e-48.el6_8.3
openssl-static-1:1.0.1e-51.el7_2.7
jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7
jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7
jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7
jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7
jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7
jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7
jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7
jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7
jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7
jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7
jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7
jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7
jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7
jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7
jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7
jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7
jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7
jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7
jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7
jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7
jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7
jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7
jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7
jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7
jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7
jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7
jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7
jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7
jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7
jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7
jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7
jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7
jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7
jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7
jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7
jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6
jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6
jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6
jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6
jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6
jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6
jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6
jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6
jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6
jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6
jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6
jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6
jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6
jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6
jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6
jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6
jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6
jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6
jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6
jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6
jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6
jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6
jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6
jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6
jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6
jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6
jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6
jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6
jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6
jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6
jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6
jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6
jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6
jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6
jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6
jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6
jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6
jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6
jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6
jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6

refmap via4

bid	92557
confirm	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759 http://www-01.ibm.com/support/docview.wss?uid=swg21995039 http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html http://www.splunk.com/view/SP-CAAAPSV http://www.splunk.com/view/SP-CAAAPUE https://bto.bluecoat.com/security-advisory/sa132 https://git.openssl.org/?p=openssl.git;a=commit;h=07bed46f332fce8c1d157689a2cdf915a982ae34 https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312 https://kc.mcafee.com/corporate/index?page=content&id=SB10171 https://source.android.com/security/bulletin/2017-03-01.html https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03856en_us https://www.tenable.com/security/tns-2016-16 https://www.tenable.com/security/tns-2016-20 https://www.tenable.com/security/tns-2016-21
freebsd	FreeBSD-SA-16:26
sectrack	1036688 1037968

Last major update

13-12-2022 - 12:15

Published

16-09-2016 - 05:59

Last modified

13-12-2022 - 12:15