ByteOS Network

CVE Vulnerability Details :

CVE-2014-3570

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-09 Jan, 2015 | 02:00

Updated At-06 Aug, 2024 | 10:50

▼CVE Numbering Authority (CNA)

The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://marc.info/?l=bugtraq&m=142895206924048&w=2	vendor-advisory x_refsource_HP
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html	vendor-advisory x_refsource_SUSE
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl	vendor-advisory x_refsource_CISCO
http://marc.info/?l=bugtraq&m=142720981827617&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory x_refsource_HP
https://support.apple.com/HT204659	x_refsource_CONFIRM
https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0	x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html	x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory x_refsource_HP
http://rhn.redhat.com/errata/RHSA-2015-0849.html	vendor-advisory x_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148363.html	vendor-advisory x_refsource_FEDORA
http://www.securitytracker.com/id/1033378	vdb-entry x_refsource_SECTRACK
http://marc.info/?l=bugtraq&m=142721102728110&w=2	vendor-advisory x_refsource_HP
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html	vendor-advisory x_refsource_SUSE
https://www.openssl.org/news/secadv_20150108.txt	x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDVSA-2015:019	vendor-advisory x_refsource_MANDRIVA
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html	x_refsource_CONFIRM
http://www.securityfocus.com/bid/71939	vdb-entry x_refsource_BID
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679	x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html	vendor-advisory x_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2015-0066.html	vendor-advisory x_refsource_REDHAT
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html	vendor-advisory x_refsource_APPLE
https://kc.mcafee.com/corporate/index?page=content&id=SB10108	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html	vendor-advisory x_refsource_SUSE
https://kc.mcafee.com/corporate/index?page=content&id=SB10102	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html	vendor-advisory x_refsource_SUSE
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory x_refsource_HP
http://rhn.redhat.com/errata/RHSA-2016-1650.html	vendor-advisory x_refsource_REDHAT
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=144050205101530&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=142496179803395&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=142720981827617&w=2	vendor-advisory x_refsource_HP
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062	vendor-advisory x_refsource_MANDRIVA
https://support.citrix.com/article/CTX216642	x_refsource_CONFIRM
http://marc.info/?l=bugtraq&m=144050254401665&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP
https://bto.bluecoat.com/security-advisory/sa88	x_refsource_CONFIRM
http://www.debian.org/security/2015/dsa-3125	vendor-advisory x_refsource_DEBIAN
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147938.html	vendor-advisory x_refsource_FEDORA

Hyperlink: http://marc.info/?l=bugtraq&m=142895206924048&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl

Resource:

vendor-advisory

x_refsource_CISCO

Hyperlink: http://marc.info/?l=bugtraq&m=142720981827617&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=144050155601375&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: https://support.apple.com/HT204659

Resource:

x_refsource_CONFIRM

Hyperlink: https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=143748090628601&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0849.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148363.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.securitytracker.com/id/1033378

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://marc.info/?l=bugtraq&m=142721102728110&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://www.openssl.org/news/secadv_20150108.txt

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:019

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/bid/71939

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0066.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10108

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10102

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://marc.info/?l=bugtraq&m=144050297101809&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://rhn.redhat.com/errata/RHSA-2016-1650.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=144050205101530&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=142496179803395&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=142720981827617&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: https://support.citrix.com/article/CTX216642

Resource:

x_refsource_CONFIRM

Hyperlink: http://marc.info/?l=bugtraq&m=144050254401665&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: https://bto.bluecoat.com/security-advisory/sa88

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.debian.org/security/2015/dsa-3125

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147938.html

Resource:

vendor-advisory

x_refsource_FEDORA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://marc.info/?l=bugtraq&m=142895206924048&w=2	vendor-advisory x_refsource_HP x_transferred
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html	vendor-advisory x_refsource_SUSE x_transferred
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl	vendor-advisory x_refsource_CISCO x_transferred
http://marc.info/?l=bugtraq&m=142720981827617&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=144050155601375&w=2	vendor-advisory x_refsource_HP x_transferred
https://support.apple.com/HT204659	x_refsource_CONFIRM x_transferred
https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=143748090628601&w=2	vendor-advisory x_refsource_HP x_transferred
http://rhn.redhat.com/errata/RHSA-2015-0849.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148363.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.securitytracker.com/id/1033378	vdb-entry x_refsource_SECTRACK x_transferred
http://marc.info/?l=bugtraq&m=142721102728110&w=2	vendor-advisory x_refsource_HP x_transferred
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html	vendor-advisory x_refsource_SUSE x_transferred
https://www.openssl.org/news/secadv_20150108.txt	x_refsource_CONFIRM x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2015:019	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/bid/71939	vdb-entry x_refsource_BID x_transferred
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679	x_refsource_CONFIRM x_transferred
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html	vendor-advisory x_refsource_SUSE x_transferred
http://rhn.redhat.com/errata/RHSA-2015-0066.html	vendor-advisory x_refsource_REDHAT x_transferred
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP x_transferred
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html	vendor-advisory x_refsource_APPLE x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10108	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html	vendor-advisory x_refsource_SUSE x_transferred
https://kc.mcafee.com/corporate/index?page=content&id=SB10102	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html	vendor-advisory x_refsource_SUSE x_transferred
http://marc.info/?l=bugtraq&m=144050297101809&w=2	vendor-advisory x_refsource_HP x_transferred
http://rhn.redhat.com/errata/RHSA-2016-1650.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=144050205101530&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=142496179803395&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=142720981827617&w=2	vendor-advisory x_refsource_HP x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062	vendor-advisory x_refsource_MANDRIVA x_transferred
https://support.citrix.com/article/CTX216642	x_refsource_CONFIRM x_transferred
http://marc.info/?l=bugtraq&m=144050254401665&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=142496289803847&w=2	vendor-advisory x_refsource_HP x_transferred
https://bto.bluecoat.com/security-advisory/sa88	x_refsource_CONFIRM x_transferred
http://www.debian.org/security/2015/dsa-3125	vendor-advisory x_refsource_DEBIAN x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147938.html	vendor-advisory x_refsource_FEDORA x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142895206924048&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl

Resource:

vendor-advisory

x_refsource_CISCO

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142720981827617&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050155601375&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: https://support.apple.com/HT204659

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=143748090628601&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0849.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148363.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.securitytracker.com/id/1033378

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142721102728110&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: https://www.openssl.org/news/secadv_20150108.txt

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:019

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.securityfocus.com/bid/71939

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10679

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://rhn.redhat.com/errata/RHSA-2015-0066.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

x_transferred

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10108

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: https://kc.mcafee.com/corporate/index?page=content&id=SB10102

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050297101809&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://rhn.redhat.com/errata/RHSA-2016-1650.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050205101530&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496179803395&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142720981827617&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:062

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: https://support.citrix.com/article/CTX216642

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=144050254401665&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=142496289803847&w=2

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: https://bto.bluecoat.com/security-advisory/sa88

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.debian.org/security/2015/dsa-3125

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147938.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References