Vulnerability Description
In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the "out" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated. Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openssl | Openssl | >= 1.1.1, < 1.1.1l |
| Debian | Debian Linux | 10.0 |
| Netapp | Active Iq Unified Manager | - |
| Netapp | Clustered Data Ontap | - |
| Netapp | Clustered Data Ontap Antivirus Connector | - |
| Netapp | E-Series Santricity Os Controller | >= 11.0, <= 11.50.2 |
| Netapp | Hci Management Node | - |
| Netapp | Manageability Software Development Kit | - |
| Netapp | Oncommand Insight | - |
| Netapp | Oncommand Workflow Automation | - |
| Netapp | Santricity Smi-S Provider | - |
| Netapp | Snapcenter | - |
| Netapp | Solidfire | - |
| Netapp | Storage Encryption | - |
| Oracle | Communications Cloud Native Core Security Edge Protection Proxy | 1.7.0 |
| Oracle | Communications Cloud Native Core Unified Data Repository | 1.15.0 |
| Oracle | Communications Session Border Controller | 8.4 |
| Oracle | Communications Unified Session Manager | 8.2.5 |
| Oracle | Enterprise Communications Broker | 3.2.0 |
| Oracle | Enterprise Session Border Controller | 8.4 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2021/08/26/2Mailing ListThird Party Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdfThird Party Advisory
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=59f5e75f3bced8f
- https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476
- https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18
- https://security.gentoo.org/glsa/202209-02Third Party Advisory
- https://security.gentoo.org/glsa/202210-02Third Party Advisory
- https://security.netapp.com/advisory/ntap-20210827-0010/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20211022-0003/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20240621-0006/
- https://www.debian.org/security/2021/dsa-4963Third Party Advisory
- https://www.openssl.org/news/secadv/20210824.txtVendor Advisory
- https://www.oracle.com/security-alerts/cpuapr2022.htmlPatchThird Party Advisory
- https://www.oracle.com/security-alerts/cpujan2022.htmlPatchThird Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2021.htmlPatchThird Party Advisory
FAQ
What is CVE-2021-3711?
CVE-2021-3711 is a vulnerability with a CVSS score of 9.8 (CRITICAL). In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "ou...
How severe is CVE-2021-3711?
CVE-2021-3711 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-3711?
Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Debian Debian Linux, Netapp Active Iq Unified Manager, Netapp Clustered Data Ontap, Netapp Clustered Data Ontap Antivirus Connector.