製品・ソフトウェアに関する情報

JVN脆弱性詳細

OpenSSL の DTLS の実装のアンチリプレイ機能におけるサービス運用妨害 (DoS) の脆弱性

Title	OpenSSL の DTLS の実装のアンチリプレイ機能におけるサービス運用妨害 (DoS) の脆弱性
Summary	penSSL の DTLS の実装のアンチリプレイ (Anti-Replay) 機能は、過度に大きなシーケンス番号を伴う新しいエポック番号の早期使用を誤って処理するため、サービス運用妨害 (誤判定のパケットドロップ) 状態にされる脆弱性が存在します。
Possible impacts	第三者により、偽造された DTLS レコードを介して、サービス運用妨害 (誤判定のパケットドロップ) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Aug. 19, 2016, midnight
Registration Date	Sept. 21, 2016, 10:33 a.m.
Last Update	July 25, 2017, 1:48 p.m.

CVSS3.0 : 重要
Score	7.5
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS2.0 : 警告
Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P

Affected System

OpenSSL Project

OpenSSL 1.1.0 未満

日本電気

CapsSuite V3.0 から V4.0

EnterpriseIdentityManager

ESMPRO/ServerAgent 4.4.22-1以降

ESMPRO/ServerAgentService 全バージョン (Linux版)

Express5800 SG3600全シリーズ

IX1000シリーズ

IX2000シリーズ

IX3000シリーズ

WebOTX Application Server Enterprise V8.2 から V9.4

WebOTX Application Server Express V8.2 から V9.4

WebOTX Application Server Foundation V8.2 から V8.5

WebOTX Application Server Standard V8.2 から V9.4

WebOTX Portal V8.2 から V9.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-2181	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2181
National Vulnerability Database (NVD)
2	CVE-2016-2181	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2181

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-189	https://jvndb.jvn.jp/ja/cwe/CWE-189.html

ベンダー情報

No	Name	URL
Cisco Security Advisory
1	cisco-sa-20160927-openssl	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160927-openssl
IBM Support Document
2	1995039	http://www-01.ibm.com/support/docview.wss?uid=swg21995039
NEC製品セキュリティ情報
3	NV17-001	http://jpn.nec.com/security-info/secinfo/nv17-001.html
News
4	OpenSSL 1.0.1 Series Release Notes	https://www.openssl.org/news/openssl-1.0.1-notes.html
5	OpenSSL 1.0.2 Series Release Notes	https://www.openssl.org/news/openssl-1.0.2-notes.html
OpenSSL Project
6	Fix DTLS replay protection	https://git.openssl.org/?p=openssl.git;a=commit;h=1fb9fdc3027b27d8eb6a1e6a846435b070980770
Oracle Critical Patch Update
7	Oracle Critical Patch Update Advisory - October 2016	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Oracle Technology Network
8	Oracle Linux Bulletin - October 2016	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
9	Oracle VM Server for x86 Bulletin - October 2016	http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
Security Advisories
10	SA132	https://bto.bluecoat.com/security-advisory/sa132
11	SA40312	https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312
Security Bulletin
12	JSA10759	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759
Splunk
13	Splunk Enterprise 6.4.5 addresses multiple vulnerabilities	http://www.splunk.com/view/SP-CAAAPUE
14	Splunk Enterprise 6.5.1 addresses multiple OpenSSL vulnerabilities	http://www.splunk.com/view/SP-CAAAPSV
Tenable Network Security
15	TNS-2016-16	https://www.tenable.com/security/tns-2016-16

その他

No	Name	URL
JVN
1	JVNVU#98667810	http://jvn.jp/vu/JVNVU98667810/index.html
関連文書
2	BizMobile Go! 脆弱性対応状況	http://www.bizmobile.co.jp/news_02.php?id=4069&nc=1

Change Log

No	Changed Details	Date of change
0	[2016年09月21日] 掲載 [2016年10月07日] ベンダ情報：OpenSSL Project (OpenSSL 1.0.1 Series Release Notes) を追加ベンダ情報：OpenSSL Project (OpenSSL 1.0.2 Series Release Notes) を追加ベンダ情報：シスコシステムズ (cisco-sa-20160927-openssl) を追加参考情報：JVN (JVNVU#98667810) を追加 [2016年11月17日] ベンダ情報：オラクル (Oracle Critical Patch Update Advisory - October 2016) を追加ベンダ情報：オラクル (Oracle Linux Bulletin - October 2016) を追加ベンダ情報：オラクル (Oracle VM Server for x86 Bulletin - October 2016) を追加参考情報：関連文書 (BizMobile Go! 脆弱性対応状況) を追加 [2017年02月21日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：日本電気 (NV17-001) を追加ベンダ情報：パルスセキュア (SA40312) を追加ベンダ情報：ジュニパーネットワークス (JSA10759) を追加ベンダ情報：ブルーコートシステムズ (SA132) を追加ベンダ情報：IBM (1995039) を追加ベンダ情報：Tenable Network Security (TNS-2016-16) を追加ベンダ情報：Splunk (Splunk Enterprise 6.4.5 addresses multiple vulnerabilities) を追加ベンダ情報：Splunk (Splunk Enterprise 6.5.1 addresses multiple OpenSSL vulnerabilities) を追加 [2017年03月09日] 影響を受けるシステム：ベンダ情報の更新に伴い内容を更新 [2017年07月25日] 影響を受けるシステム：ベンダ情報 (NV17-001) の更新に伴い内容を更新	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2016-2181

Summary	The Anti-Replay feature in the DTLS implementation in OpenSSL before 1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c.
Publication Date	Sept. 16, 2016, 2:59 p.m.
Registration Date	Jan. 26, 2021, 2:08 p.m.
Last Update	Nov. 21, 2024, 11:47 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:openssl:openssl:1.0.1m:::::::*
cpe:2.3:a:openssl:openssl:1.0.2a:::::::*
cpe:2.3:a:openssl:openssl:1.0.1j:::::::*
cpe:2.3:a:openssl:openssl:1.0.1h:::::::*
cpe:2.3:a:openssl:openssl:1.0.2e:::::::*
cpe:2.3:a:openssl:openssl:1.0.1r:::::::*
cpe:2.3:a:openssl:openssl:1.0.2b:::::::*
cpe:2.3:a:openssl:openssl:1.0.1c:::::::*
cpe:2.3:a:openssl:openssl:1.0.1g:::::::*
cpe:2.3:a:openssl:openssl:1.0.2g:::::::*
cpe:2.3:a:openssl:openssl:1.0.1a:::::::*
cpe:2.3:a:openssl:openssl:1.0.2h:::::::*
cpe:2.3:a:openssl:openssl:1.0.1d:::::::*
cpe:2.3:a:openssl:openssl:1.0.1t:::::::*
cpe:2.3:a:openssl:openssl:1.0.2c:::::::*
cpe:2.3:a:openssl:openssl:1.0.1p:::::::*
cpe:2.3:a:openssl:openssl:1.0.1k:::::::*
cpe:2.3:a:openssl:openssl:1.0.1b:::::::*
cpe:2.3:a:openssl:openssl:1.0.1n:::::::*
cpe:2.3:a:openssl:openssl:1.0.1q:::::::*
cpe:2.3:a:openssl:openssl:1.0.1e:::::::*
cpe:2.3:a:openssl:openssl:1.0.1l:::::::*
cpe:2.3:a:openssl:openssl:1.0.1f:::::::*
cpe:2.3:a:openssl:openssl:1.0.1s:::::::*
cpe:2.3:a:openssl:openssl:1.0.1o:::::::*
cpe:2.3:a:openssl:openssl:1.0.2:::::::*
cpe:2.3:a:openssl:openssl:1.0.2f:::::::*
cpe:2.3:a:openssl:openssl:1.0.1i:::::::*
cpe:2.3:a:openssl:openssl:1.0.1:::::::*
cpe:2.3:a:openssl:openssl:1.0.2d:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:oracle:linux:6:::::::*
cpe:2.3:o:oracle:linux:7:::::::*

Related information, measures and tools

No	URL	タグ
1	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759	Third Party Advisory
2	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759	Third Party Advisory
3	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html
4	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html
5	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html
6	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html
7	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html
8	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html
9	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html
10	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html
11	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html
12	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html
13	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html
14	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html
15	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html
16	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html
17	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html
18	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html
19	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html
20	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html
21	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html
22	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html
23	http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html
24	http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html
25	http://rhn.redhat.com/errata/RHSA-2016-1940.html
26	http://rhn.redhat.com/errata/RHSA-2016-1940.html
27	http://seclists.org/fulldisclosure/2017/Jul/31
28	http://seclists.org/fulldisclosure/2017/Jul/31
29	http://www.debian.org/security/2016/dsa-3673
30	http://www.debian.org/security/2016/dsa-3673
31	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en
32	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en
33	http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
34	http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
35	http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
36	http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
37	http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
38	http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
39	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html	Third Party Advisory
40	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html	Third Party Advisory
41	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
42	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
43	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html	Third Party Advisory
44	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html	Third Party Advisory
45	http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html	Third Party Advisory
46	http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html	Third Party Advisory
47	http://www.securityfocus.com/bid/92982	Third Party Advisory VDB Entry
48	http://www.securityfocus.com/bid/92982	Third Party Advisory VDB Entry
49	http://www.securitytracker.com/id/1036690
50	http://www.securitytracker.com/id/1036690
51	http://www.splunk.com/view/SP-CAAAPSV	Third Party Advisory
52	http://www.splunk.com/view/SP-CAAAPSV	Third Party Advisory
53	http://www.splunk.com/view/SP-CAAAPUE	Third Party Advisory
54	http://www.splunk.com/view/SP-CAAAPUE	Third Party Advisory
55	http://www.ubuntu.com/usn/USN-3087-1
56	http://www.ubuntu.com/usn/USN-3087-1
57	http://www.ubuntu.com/usn/USN-3087-2
58	http://www.ubuntu.com/usn/USN-3087-2
59	http://www-01.ibm.com/support/docview.wss?uid=swg21995039	Third Party Advisory
60	http://www-01.ibm.com/support/docview.wss?uid=swg21995039	Third Party Advisory
61	https://bto.bluecoat.com/security-advisory/sa132	Third Party Advisory
62	https://bto.bluecoat.com/security-advisory/sa132	Third Party Advisory
63	https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
64	https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
65	https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=1fb9fdc3027b27d8eb6a1e6a846435b070980770
66	https://git.openssl.org/?p=openssl.git%3Ba=commit%3Bh=1fb9fdc3027b27d8eb6a1e6a846435b070980770
67	https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312	Third Party Advisory
68	https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312	Third Party Advisory
69	https://kc.mcafee.com/corporate/index?page=content&id=SB10215
70	https://kc.mcafee.com/corporate/index?page=content&id=SB10215
71	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc
72	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:26.openssl.asc
73	https://support.f5.com/csp/article/K59298921
74	https://support.f5.com/csp/article/K59298921
75	https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24
76	https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24
77	https://www.tenable.com/security/tns-2016-16	Third Party Advisory
78	https://www.tenable.com/security/tns-2016-16	Third Party Advisory
79	https://www.tenable.com/security/tns-2016-20
80	https://www.tenable.com/security/tns-2016-20
81	https://www.tenable.com/security/tns-2016-21
82	https://www.tenable.com/security/tns-2016-21

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:openssl:openssl:1.0.1m:::::::*
cpe:2.3:a:openssl:openssl:1.0.2a:::::::*
cpe:2.3:a:openssl:openssl:1.0.1j:::::::*
cpe:2.3:a:openssl:openssl:1.0.1h:::::::*
cpe:2.3:a:openssl:openssl:1.0.2e:::::::*
cpe:2.3:a:openssl:openssl:1.0.1r:::::::*
cpe:2.3:a:openssl:openssl:1.0.2b:::::::*
cpe:2.3:a:openssl:openssl:1.0.1c:::::::*
cpe:2.3:a:openssl:openssl:1.0.1g:::::::*
cpe:2.3:a:openssl:openssl:1.0.2g:::::::*
cpe:2.3:a:openssl:openssl:1.0.1a:::::::*
cpe:2.3:a:openssl:openssl:1.0.2h:::::::*
cpe:2.3:a:openssl:openssl:1.0.1d:::::::*
cpe:2.3:a:openssl:openssl:1.0.1t:::::::*
cpe:2.3:a:openssl:openssl:1.0.2c:::::::*
cpe:2.3:a:openssl:openssl:1.0.1p:::::::*
cpe:2.3:a:openssl:openssl:1.0.1k:::::::*
cpe:2.3:a:openssl:openssl:1.0.1b:::::::*
cpe:2.3:a:openssl:openssl:1.0.1n:::::::*
cpe:2.3:a:openssl:openssl:1.0.1q:::::::*
cpe:2.3:a:openssl:openssl:1.0.1e:::::::*
cpe:2.3:a:openssl:openssl:1.0.1l:::::::*
cpe:2.3:a:openssl:openssl:1.0.1f:::::::*
cpe:2.3:a:openssl:openssl:1.0.1s:::::::*
cpe:2.3:a:openssl:openssl:1.0.1o:::::::*
cpe:2.3:a:openssl:openssl:1.0.2:::::::*
cpe:2.3:a:openssl:openssl:1.0.2f:::::::*
cpe:2.3:a:openssl:openssl:1.0.1i:::::::*
cpe:2.3:a:openssl:openssl:1.0.1:::::::*
cpe:2.3:a:openssl:openssl:1.0.2d:::::::*