diff options
| author | Tomas Mraz <tomas@openssl.org> | 2024-01-04 10:32:32 +0100 |
|---|---|---|
| committer | Tomas Mraz <tomas@openssl.org> | 2024-01-09 15:48:38 +0100 |
| commit | bee1e83a18d6820b4264cbefca9ff5576ff679c2 (patch) | |
| tree | 10fcedf317d0d27e66f0ab370eb42952affada9d | |
| parent | f3fc5808fe9ff74042d639839610d03b8fdcc015 (diff) | |
Add CHANGES.md and NEWS.md entries for CVE-2023-6129
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23200)
(cherry picked from commit 858c7bc210a406cc7f891ac2aed78692d2e02937)
| -rw-r--r-- | CHANGES.md | 21 | ||||
| -rw-r--r-- | NEWS.md | 4 |
2 files changed, 25 insertions, 0 deletions
diff --git a/CHANGES.md b/CHANGES.md index 11f4d6a8d8..b30ef7b46b 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -24,6 +24,26 @@ OpenSSL 3.1 ### Changes between 3.1.4 and 3.1.5 [xx XXX xxxx] + * The POLY1305 MAC (message authentication code) implementation in OpenSSL + for PowerPC CPUs saves the contents of vector registers in different + order than they are restored. Thus the contents of some of these vector + registers is corrupted when returning to the caller. The vulnerable code is + used only on newer PowerPC processors supporting the PowerISA 2.07 + instructions. + + The consequences of this kind of internal application state corruption can + be various - from no consequences, if the calling application does not + depend on the contents of non-volatile XMM registers at all, to the worst + consequences, where the attacker could get complete control of the + application process. However unless the compiler uses the vector registers + for storing pointers, the most likely consequence, if any, would be an + incorrect result of some application dependent calculations or a crash + leading to a denial of service. + + ([CVE-2023-6129]) + + *Rohan McLure* + * Fix excessive time spent in DH check / generation with large Q parameter value. @@ -19880,6 +19900,7 @@ ndif <!-- Links --> +[CVE-2023-6129]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-6129 [CVE-2023-5678]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-5678 [CVE-2023-5363]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-5363 [CVE-2023-4807]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-4807 @@ -21,6 +21,9 @@ OpenSSL 3.1 ### Major changes between OpenSSL 3.1.4 and OpenSSL 3.1.5 [under development] + * Fix POLY1305 MAC implementation corrupting vector registers on PowerPC + CPUs which support PowerISA 2.07 + ([CVE-2023-6129]) * Fix excessive time spent in DH check / generation with large Q parameter value ([CVE-2023-5678]) @@ -1479,6 +1482,7 @@ OpenSSL 0.9.x <!-- Links --> +[CVE-2023-6129]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-6129 [CVE-2023-5678]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-5678 [CVE-2023-5363]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-5363 [CVE-2023-4807]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-4807 |