From levitte at openssl.org Mon Nov 6 15:51:53 2023 From: levitte at openssl.org (Richard Levitte) Date: Mon, 6 Nov 2023 15:51:53 +0000 Subject: OpenSSL Security Advisory Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 OpenSSL Security Advisory [6th November 2023] ============================================= Excessive time spent in DH check / generation with large Q parameter value (CVE-2023-5678) ========================================================================================== Severity: Low Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the "-pubcheck" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue. OpenSSL 3.1, 3.0, 1.1.1 and 1.0.2 are vulnerable to this issue. Due to the low severity of this issue we are not issuing new releases of OpenSSL at this time. The fix will be included in the next releases when they become available. The fix is also available in commit ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6 (for 3.1) and commit db925ae2e65d0d925adef429afc37f75bd1c2017 (for 3.0). It is available to premium support customers in commit 710fee740904b6290fef0dd5536fbcedbc38ff0c (for 1.1.1) and in commit 34efaef6c103d636ab507a0cc34dca4d3aecc055 (for 1.0.2). This issue was reported on 16th August 2023 by David Benjamin (Google). The fix was developed by Richard Levitte. General Advisory Notes ====================== URL for this Security Advisory: https://www.openssl.org/news/secadv/20231106.txt Note: the online version of the advisory may be updated with additional details over time. For details of OpenSSL severity classifications please see: https://www.openssl.org/policies/general/security-policy.html -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEeVOsH7w9yLOykjk+1enkP3357owFAmVJCvoACgkQ1enkP335 7oytjRAAl2eNIEk0dNel7QoTFCTyXFl7IWUqWqNqx1WEr4oD/2SnFiOtQzOGl1U2 +Wr7y0GBz1cfY7xj5yw3JBajnq8v92rWHXfLheN4makflwhHwjx/faX/uTGey5Xp +5ZdKZTnkSMC4gY4gS3/SWlmyHZAYVjs/OJIlKXNYRl0q+91OBydQEcixvetIF+c tdog1im+92xvkOtm6RfYJXEg84keft4twzw+xxeiFQ8c856SvBOSEtIhewpF9gyo mP2QS8/Ne6zeLXuw52pbwc/nXSXR1qPSwv+PDcDMIaVtAKYthdMbsugW05pNori1 +bjbDQ9lM+No+jtbkWXObGKuXciWCnqGmKxgBIDCmpvTKSVJ2Bfnewy08a+nMkG4 ZNmvOpF53dqVAaJRMPPZURW5697cYteF1WDWen48rx+eEP96KGB0u/jPitF1yGWC larXfkpeoL8nK8c8BZS9wF1J8xUfH1TBzl78YdQInI6yNH1cIXCYquGPVYgJQU4O TIQwqYCghL2+c46AkooepW5E7ltWK7LHB/64BU7BiTZeMKH+DO8L1YvFgliZLpzo v9n3amunUylXzdcDznt01PtIwzTsEAKioxl0Xq7k9EQyNAdx3BL21MifkjxofUTV 54AyaYXtBVHNxqsZrdv6wVGc7F23vqmhmtS5IpgPkxtDQzKWdYk= =FBln -----END PGP SIGNATURE----- From openssl at openssl.org Thu Nov 23 13:48:59 2023 From: openssl at openssl.org (OpenSSL) Date: Thu, 23 Nov 2023 13:48:59 +0000 Subject: OpenSSL version 3.2.0 published Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 OpenSSL version 3.2.0 released ============================== OpenSSL - The Open Source toolkit for SSL/TLS https://www.openssl.org/ The OpenSSL project team is pleased to announce the release of version 3.2.0 of our open source toolkit for SSL/TLS. For details of the changes, see the release notes at: https://www.openssl.org/news/openssl-3.2-notes.html Specific notes on upgrading to OpenSSL 3.2 from previous versions are available in the OpenSSL Migration Guide, here: https://www.openssl.org/docs/man3.2/man7/migration_guide.html OpenSSL 3.2.0 is available for download via HTTPS and FTP from the following master locations (you can find the various FTP mirrors under https://www.openssl.org/source/mirror.html): * https://www.openssl.org/source/ * ftp://ftp.openssl.org/source/ The distribution file name is: o openssl-3.2.0.tar.gz Size: 17698352 SHA1 checksum: 82f6eb236c09f7947caa9044e86800e32cb2e5c8 SHA256 checksum: 14c826f07c7e433706fb5c69fa9e25dab95684844b4c962a2cf1bf183eb4690e The checksums were calculated using the following commands: openssl sha1 openssl-3.2.0.tar.gz openssl sha256 openssl-3.2.0.tar.gz Yours, The OpenSSL Project Team. -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE78CkZ9YTy4PH7W0w2JTizos9efUFAmVfUa8ACgkQ2JTizos9 efXPJQ//RQBS6jI9MWvc59ryBARMknqGE6dSaGuyaZC/FIEN+BskEkVj5Z7W/InM HSuaUQryYN2IKU3P9uVQFKDAh2AmcMtOcrT9r6u1PiafyMbPPMZPOZUX+vFleKfb ruRfq/hmKX1JDA42D3LHoOdeYYJTaTZsSA4PkgoxuvpN4856/nTF/xYJk5arSKI9 unPrflFQ+mMw/50o+oZ3gxBir4Tli2sWHTbIsxMMI/LS7J3Rs6BfpfSSA1BMNgg7 AcHcJs7/pJYMdr2Nyd1y8n+tG7UOu9FUpy6uu4uuOa4k9v//PkasJlvTAaqGkgUk jec+wTbTxHlZyRk5m0Zd87m1Ji2BA9nsHr3CQXsRXMuFCgxpM98RjWvWre7Wtu/K aRbXfetylGqxWWufQ5xNfuDqWjfc4iN6Cqn0w++5OXW8Jn70o6kTEKxv52MU2i2T T9pQb+CnbZSP2KIZt15rDZKWm16s93PZGxlye7R440a2kJGFN8rWxBK2fhIPqL1m N9i1YKv29O0r85cwfosFB9oFbcHyk4RTT0cJDdXWrmq7MHsVw6qQuu96iIGyezKw aXl67+1ufSuU2HgbVxmKdPwNjUjAiiEki/Fby87TANi86jCcHIrUyiXWtJA494Xk p7y7Fm5AlzvgBNKkTjbCIaHZ30qQQgG9HiR3giJeRKsS1k2s7Cw= =Urhr -----END PGP SIGNATURE----- From kajal at openssl.org Wed Nov 29 15:00:50 2023 From: kajal at openssl.org (Kajal Sapkota) Date: Wed, 29 Nov 2023 07:00:50 -0800 Subject: Live OpenSSL Providers Workshop: Users Track : Dec 6th and Dec 7th Message-ID: <2dbb060f-fab9-4d4e-ba3c-005535efd927@openssl.org> The long anticipated OpenSSL Providers Workshop is finally here! We have divided the workshop into two tracks the Users Track and the Authors Track. Please join us next week for the Live OpenSSL Providers Workshop: Users Track. Due to world wide interest, we will be hosting two sessions of the Users Track at different times to allow people from different time zones to be able to join our workshops live. The Users Track will cover how to use OpenSSL providers. It will be split into 3 separate presentations by OpenSSL Engineers. There will be opportunities to ask questions after each talk, as well as at the end where there will be an open forum for any questions or feedback not covered by the individual presentations. Learn more and register in advance for the workshop here(please choose the time zone that works best for you): Session 1: APAC Time Zone When: Dec 6, 2023 07:00 AM Universal Time UTC Register in advance: https://zoom.us/webinar/register/WN_8ZPx5nkpTEG1fYLWH-StbQ Session 2: Americas and EMEA Time Zone When: Dec 7, 2023 04:00 PM Universal Time UTC Register in advance: https://zoom.us/webinar/register/WN_jta40RLSTTei9OF8CINjCA After registering, you will receive a confirmation email containing information about joining the webinar. If you have any questions or comments please contact us at feedback at openssl.org If you are unable to attend please contact us and we will provide a recording of the meeting. Thanks The OpenSSL Project