CVE-2021-3449

MEDIUMMonitor

Published:Mar 25, 2021(5 years ago)

Modified:Nov 21, 2024

Remote ExploitNo Auth RequiredNo Interaction

Vulnerability Description

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).

Attack Characteristics

Network AccessHigh ComplexityNo Auth NeededNo User Interaction

🤖

AI analysis not yet available

Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.

No Fix Known

No patch has been released yet. Apply workarounds or mitigations where available.

Affected Software

143

Vendor	Product	Versions	Fixed In
openssl	openssl	1.1.1 - 1.1.1k	-
debian	debian_linux	-

Timeline

Published
CVE disclosed publicly
Mar 25, 20215 years ago
Last Modified
Most recent update
Nov 21, 20241 year ago
Indexed to CVEInsight
Added to this platform
Mar 29, 20261 month ago

References

http://www.openwall.com/lists/oss-security/2021/03/27/1Mailing List
http://www.openwall.com/lists/oss-security/2021/03/27/2Mailing List
http://www.openwall.com/lists/oss-security/2021/03/28/3Mailing List

CVSS Score

v3.1

5.9/ 10.0

MEDIUM

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

At a Glance

143

Affected Products

References

openssl / openssl

http://www.openwall.com/lists/oss-security/2021/03/28/4Mailing List

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdfThird Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdfPatch

https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa...

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845Third Party Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10356Third Party Advisory

https://lists.debian.org/debian-lts-announce/2021/08/msg00029.htmlMailing List

https://lists.fedoraproject.org/archives/list/package-announce%40lists...

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013Third Party Advisory

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.ascThird Party Advisory

https://security.gentoo.org/glsa/202103-03Third Party Advisory

https://security.netapp.com/advisory/ntap-20210326-0006/Third Party Advisory

https://security.netapp.com/advisory/ntap-20210513-0002/Third Party Advisory

https://security.netapp.com/advisory/ntap-20240621-0006/

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/...Third Party Advisory

https://www.debian.org/security/2021/dsa-4875Third Party Advisory

https://www.openssl.org/news/secadv/20210325.txtVendor Advisory

https://www.oracle.com//security-alerts/cpujul2021.htmlPatch

https://www.oracle.com/security-alerts/cpuApr2021.htmlPatch

https://www.oracle.com/security-alerts/cpuapr2022.htmlPatch

https://www.oracle.com/security-alerts/cpujul2022.htmlThird Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.htmlThird Party Advisory

https://www.tenable.com/security/tns-2021-05Third Party Advisory

https://www.tenable.com/security/tns-2021-06Third Party Advisory

https://www.tenable.com/security/tns-2021-09Third Party Advisory

https://www.tenable.com/security/tns-2021-10Third Party Advisory

http://www.openwall.com/lists/oss-security/2021/03/27/1Mailing List

http://www.openwall.com/lists/oss-security/2021/03/27/2Mailing List

http://www.openwall.com/lists/oss-security/2021/03/28/3Mailing List