The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6039-1 advisory.

    It was discovered that OpenSSL was not properly managing file locks when processing policy constraints. If     a user or automated system were tricked into processing a certificate chain with specially crafted policy     constraints, a remote attacker could possibly use this issue to cause a denial of service. This issue only     affected Ubuntu 22.04 LTS and Ubuntu 22.10. (CVE-2022-3996)

    David Benjamin discovered that OpenSSL was not properly performing the verification of X.509 certificate     chains that include policy constraints, which could lead to excessive resource consumption. If a user or     automated system were tricked into processing a specially crafted X.509 certificate chain that includes     policy constraints, a remote attacker could possibly use this issue to cause a denial of service.
    (CVE-2023-0464)

    David Benjamin discovered that OpenSSL was not properly handling invalid certificate policies in leaf     certificates, which would result in certain policy checks being skipped for the certificate. If a user or     automated system were tricked into processing a specially crafted certificate, a remote attacker could     possibly use this issue to assert invalid certificate policies and circumvent policy checking.
    (CVE-2023-0465)

    David Benjamin discovered that OpenSSL incorrectly documented the functionalities of function     X509_VERIFY_PARAM_add0_policy, stating that it would implicitly enable certificate policy checks when     doing certificate verifications, contrary to its implementation. This could cause users and applications     to not perform certificate policy checks even when expected to do so. (CVE-2023-0466)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.04 : OpenSSL vulnerabilities (USN-6039-1)

critical Nessus Plugin ID 174752

Version 1.4

Version 1.3

Version 1.2

Version 1.1

Version 1.0

Version 1.4 Sep 19, 2024, 8:47 AM CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:U") Plugin Feed: 202409190847
Version 1.3 Aug 28, 2024, 7:43 PM CVSS metrics ("Cvssv4 score" set to 9.3) CVSS metrics ("Cvssv4 vector" set to "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N") Detection (updated detection logic) Plugin metadata Plugin Feed: 202408281943
Version 1.2 Oct 21, 2023, 5:06 AM Detection Exploit attributes ("Exploit available" set to "False") Plugin metadata Plugin Feed: 202310210506
Version 1.1 Aug 10, 2023, 4:05 PM IAVM reference Plugin Feed: 202308101605
Version 1.0 Apr 26, 2023, 1:09 AM New Plugin Feed: 202304260109