CVE-2022-3602
Description
A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate verification despite failure to construct a path to a trusted issuer. An attacker can craft a malicious email address to overflow four attacker-controlled bytes on the stack. This buffer overflow could result in a crash (causing a denial of service) or potentially remote code execution. Many platforms implement stack overflow protections which would mitigate against the risk of remote code execution. The risk may be further mitigated based on stack layout for any given platform/compiler. Pre-announcements of CVE-2022-3602 described this issue as CRITICAL. Further analysis based on some of the mitigating factors described above have led this to be downgraded to HIGH. Users are still encouraged to upgrade to a new version as soon as possible. In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects. Fixed in OpenSSL 3.0.7 (Affected 3.0.0,3.0.1,3.0.2,3.0.3,3.0.4,3.0.5,3.0.6).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
openssl-srccrates.io | >= 300.0.0, < 300.0.11 | 300.0.11 |
Affected products
59- cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:26:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:fedoraproject:fedora:26:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:27:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
- osv-coords50 versionspkg:apk/chainguard/libcrypto3pkg:apk/chainguard/libssl3pkg:apk/chainguard/opensslpkg:apk/chainguard/openssl-configpkg:apk/chainguard/openssl-dbgpkg:apk/chainguard/openssl-devpkg:apk/chainguard/openssl-docpkg:apk/chainguard/openssl-engine-afalgpkg:apk/chainguard/openssl-engine-capipkg:apk/chainguard/openssl-engine-loader-atticpkg:apk/chainguard/openssl-engine-padlockpkg:apk/chainguard/openssl-provider-fipspkg:apk/chainguard/openssl-provider-legacypkg:apk/chainguard/ruby-3.1pkg:apk/chainguard/ruby-3.1-basepkg:apk/chainguard/ruby-3.1-base-devpkg:apk/chainguard/ruby-3.1-devpkg:apk/chainguard/ruby-3.1-docpkg:apk/wolfi/libcrypto3pkg:apk/wolfi/libssl3pkg:apk/wolfi/opensslpkg:apk/wolfi/openssl-configpkg:apk/wolfi/openssl-dbgpkg:apk/wolfi/openssl-devpkg:apk/wolfi/openssl-docpkg:apk/wolfi/openssl-engine-afalgpkg:apk/wolfi/openssl-engine-capipkg:apk/wolfi/openssl-engine-loader-atticpkg:apk/wolfi/openssl-engine-padlockpkg:apk/wolfi/openssl-provider-legacypkg:apk/wolfi/ruby-3.1pkg:apk/wolfi/ruby-3.1-basepkg:apk/wolfi/ruby-3.1-base-devpkg:apk/wolfi/ruby-3.1-devpkg:apk/wolfi/ruby-3.1-docpkg:bitnami/nodepkg:bitnami/node-minpkg:cargo/openssl-srcpkg:linux/kernelpkg:rpm/almalinux/opensslpkg:rpm/almalinux/openssl-develpkg:rpm/almalinux/openssl-libspkg:rpm/almalinux/openssl-perlpkg:rpm/opensuse/cargo-audit-advisory-db&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/openssl-3&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/openssl-3&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python-cryptography&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python-cryptography-vectors&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python-mitmproxy&distro=openSUSE%20Tumbleweedpkg:rpm/suse/openssl-3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4
< 3.0.7-r0+ 49 more
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.8-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 3.0.7-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: >= 18.0.0, < 18.11.0
- (no CPE)range: >= 18.0.0, < 18.11.0
- (no CPE)range: >= 300.0.0, < 300.0.11
- (no CPE)range: >= b653db77350c7307a513b81856fe53e94cf42446
- (no CPE)range: < 1:3.0.1-43.el9_0
- (no CPE)range: < 1:3.0.1-43.el9_0
- (no CPE)range: < 1:3.0.1-43.el9_0
- (no CPE)range: < 1:3.0.1-43.el9_0
- (no CPE)range: < 20221102-1.1
- (no CPE)range: < 3.0.1-150400.4.11.1
- (no CPE)range: < 3.0.7-1.1
- (no CPE)range: < 38.0.3-1.1
- (no CPE)range: < 44.0.0-1.1
- (no CPE)range: < 11.1.2-1.1
- (no CPE)range: < 3.0.1-150400.4.11.1
Patches
Vulnerability mechanics
References
54- packetstormsecurity.com/files/169687/OpenSSL-Security-Advisory-20221101.htmlnvdThird Party AdvisoryVDB EntryWEB
- www.openwall.com/lists/oss-security/2022/11/01/15nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/16nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/17nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/18nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/19nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/20nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/21nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/01/24nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/1nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/10nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/11nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/12nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/13nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/14nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/15nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/2nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/3nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/5nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/6nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/7nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/02/9nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/1nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/10nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/11nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/2nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/3nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/5nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/6nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/7nvdMailing ListThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2022/11/03/9nvdMailing ListThird Party AdvisoryWEB
- git.openssl.org/gitweb/nvdBroken LinkThird Party AdvisoryWEB
- github.com/advisories/GHSA-8rwr-x37p-mx23ghsaADVISORY
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6S/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITS/nvdMailing ListThird Party Advisory
- nvd.nist.gov/vuln/detail/CVE-2022-3602ghsaADVISORY
- psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0023nvdThird Party AdvisoryWEB
- security.gentoo.org/glsa/202211-01nvdIssue TrackingThird Party AdvisoryWEB
- security.netapp.com/advisory/ntap-20221102-0001/nvdThird Party Advisory
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-W9sdCc2anvdThird Party AdvisoryWEB
- www.kb.cert.org/vuls/id/794340nvdThird Party AdvisoryUS Government ResourceWEB
- www.openssl.org/news/secadv/20221101.txtnvdVendor AdvisoryWEB
- git.openssl.org/gitweb/ghsaWEB
- github.com/alexcrichton/openssl-src-rs/commit/4a31c14f31e1a08c18893a37e304dd1dd4b7daa3ghsaWEB
- github.com/openssl/openssl/commit/fe3b639dc19b325846f4f6801f2f4604f56e3de3ghsaWEB
- github.com/rustsec/advisory-db/pull/1452ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6SghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITSghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6SghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITSghsaWEB
- rustsec.org/advisories/RUSTSEC-2022-0064.htmlghsaWEB
- security.netapp.com/advisory/ntap-20221102-0001ghsaWEB
- www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00789.htmlnvdWEB
- cert-portal.siemens.com/productcert/html/ssa-408105.htmlnvd
News mentions
0No linked articles in our index yet.