The ssl3getcertverify function in s3srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libssl-dev": "1.0.1f-1ubuntu2.8", "libssl-doc": "1.0.1f-1ubuntu2.8", "libssl1.0.0-dbg": "1.0.1f-1ubuntu2.8", "openssl": "1.0.1f-1ubuntu2.8", "libssl1.0.0-udeb": "1.0.1f-1ubuntu2.8", "libssl1.0.0": "1.0.1f-1ubuntu2.8", "libcrypto1.0.0-udeb": "1.0.1f-1ubuntu2.8" } ] }