The Story So Far: OpenSSL November 1 2022 vulnerabilities fixed in OpenSSL 3.0.7 -CVE -2022-3602, CVE-2022-3786

aka "The Giant Involuntary SBOM"

by @TychoTithonus (Royce Williams) and many contributors

Goals: before announcement, deduce what we can, and reduce friction of information collection; after announcement, collect and correct

Disclaimer: best effort - validate all for your environment/model before use, unofficial sources may be wrong, official sources may be paywalled / unsearchable!

Skeptics: Even if this vuln is a big nothingburger, I'd "rather have and not need it than need it and not have it". Also, this work is largely forward-ready for future vulnerabilities 😛

See GitHub to contribute - options are GitHub PRs, GitHub issues, and Twitter or email (in preferred order)

Fast updates will be made here directly, and sync with GitHub is a semi-manual process, with periodic convergence

(Official sources (including official forum replies) strongly preferred)

This page - updates, scope, technical links, detection tools, mitigation, remediation, news

List of OSes and package frameworks, OpenSSL status and signals

List of specific products, OpenSSL status and signals

List of orgs, with both vuln-specific (TBD) and general convenience links (blog, advisories, Twitter - work in progress

Other SSL frameworks and their likely and/or confirmed status

If your vendor hasn't provided a reference or statement yet, you may be able to infer presence of 3.0.x with these.

Other references that didn't belong above.

Meta tasks for improving this doc and supporting its mission

Published Google Sheets export (exported HTML for general reading, better performance under load) - share this one (and switch to it unless you need the Sheet tools)

Source Google Sheet (with all read-only Sheets tools available if needed - but better because of frozen headers and first columns)

Export should be updated every five minutes

OpenSSL has announced an upcoming 'Critical' (rare) vulnerability in OpenSSL 3.0.x, to be announced Tueday November 1st

"Spooky SSL" is emerging and used by NCSC_NL, but isn't highly prevalent

https://www.openssl.org/news/secadv/20221101.txt

https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/

Announcement explicitly includes the version number

World clock timer

5 AM Alaska, 6 AM Pacific, 9 AM Eastern

See CVE (MITRE) links for now:

"In a TLS client, this can be triggered by connecting to a malicious server."

"In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects."

"An attacker can craft a malicious email address to overflow an arbitrary number of bytes containing the `.` character (decimal 46) on the stack."

" An attacker can craft a malicious email address to overflow four attacker-controlled bytes on the stack. This buffer overflow could result in a crash (causing a ial of service) or potentially remote code execution depending on stack layout for any given platform/compiler. ([CVE-2022-3602])

"Needs CA to sign malicious cert" - SANS ISC

"A: Any OpenSSL 3.0 app that verifies X.509 certs received from untrusted sources should be considered vulnerable"

RCE (remote execution)?

Stack protections on most OSes limit exploitation in practice. TLS client certs required?

@MalwareTechBlog:

"[.] but in practice it would be extremely unlikely or even impossible. On a 1-10 scale of was it worth the panic, I'd give it less than zero."

LPE (Local escalation)?

Stack protections on most OSes limit exploitation in practice.

QuicTLS also affected?

See "Other-SSLs" tab as details emerge

NCSC-NL central reference

collab between multiple CERTs, high value, already definitive product list - and definitely watch both GitHub commits and pull requests for early heads-ups!

Discoverer ref (SandboxEscaper FTW!)

https://sandboxescaper.blogspot.com/p/disclosures_8.html

just a link to the official announcement

What changed (OpenSSL git diff)

OpenSSL package status across many Unix-likes - great reference, not sure how quickly it will show updates

Rapid7 AttackerKB analysis & POC:

Thu Nov 3 15:26:24 UTC 2022

Other dates and times without timezone are Alaska time (UTC -8)

Key updates (newest first)

Post-announcement:

Fri Nov 4 01:28:38 UTC 2022

Added Microsoft MSRC guidance

Thu Nov 3 15:41:24 UTC 2022

Added Lansweeper detection blog post

Thu Nov 3 15:24:29 UTC 2022

Added JFrog scripts for detecting use of client certificates as well as vulnerable versions

Thu Nov 3 04:02:39 UTC 2022

Added forum questions (not yet answered) for Imperva (WAF) and Greenbone (vuln detection)

Thu Nov 3 03:11:30 UTC 2022

Added Fox-it Suricata GitHub

Thu Nov 3 01:22:31 UTC 2022

Wed Nov 2 21:30:05 UTC 2022

Wed Nov 2 21:24:25 UTC 2022

Crowdstrike updated Falcon post

Tue Nov 1 17:34:25 UTC 2022

Articles, detections, etc surfacing

Initial flurry contained in core info above

https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/