Home > Vulnerability Database > CVE-2022-3786

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-3786

Good to know:

Date: November 1, 2022

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate verification despite failure to construct a path to a trusted issuer. An attacker can craft a malicious email address in a certificate to overflow an arbitrary number of bytes containing the `.' character (decimal 46) on the stack. This buffer overflow could result in a crash (causing a denial of service). In a TLS client, this can be triggered by connecting to a malicious server. In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.

Language: C

Severity Score

7.5

Related Resources (50)

Url: https://github.com/openssl/openssl/commit/c42165b5706e42f67ef8ef4c351a9a4c5d21639a

Url: http://www.openwall.com/lists/oss-security/2022/11/02/1

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6S/

Url: http://www.openwall.com/lists/oss-security/2022/11/02/2

Url: http://www.openwall.com/lists/oss-security/2022/11/02/5

Url: http://www.openwall.com/lists/oss-security/2022/11/02/6

Url: http://www.openwall.com/lists/oss-security/2022/11/02/3

Url: http://www.openwall.com/lists/oss-security/2022/11/02/11

Url: http://www.openwall.com/lists/oss-security/2022/11/02/10

Url: https://www.kb.cert.org/vuls/id/794340

Url: https://www.openssl.org/news/secadv/20221101.txt

Url: http://www.openwall.com/lists/oss-security/2022/11/02/15

Url: http://www.openwall.com/lists/oss-security/2022/11/02/14

Url: http://www.openwall.com/lists/oss-security/2022/11/02/13

Url: http://www.openwall.com/lists/oss-security/2022/11/02/12

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63YRPWPUSX3MBHNPIEJZDKQT6YA7UF6S/

Url: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-W9sdCc2a

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITS/

Url: https://security.netapp.com/advisory/ntap-20221102-0001/

Url: https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=c42165b5706e42f67ef8ef4c351a9a4c5d21639a

Url: http://www.openwall.com/lists/oss-security/2022/11/03/9

Url: http://www.openwall.com/lists/oss-security/2022/11/03/6

Url: http://www.openwall.com/lists/oss-security/2022/11/03/7

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-3786

Url: http://www.openwall.com/lists/oss-security/2022/11/03/10

Url: http://www.openwall.com/lists/oss-security/2022/11/03/11

Url: https://www.mend.io/resources/blog/advisory-new-openssl-critical-security-vulnerability/

Url: https://access.redhat.com/security/cve/CVE-2022-3786

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2022-3786

Url: http://www.openwall.com/lists/oss-security/2022/11/01/19

Url: http://packetstormsecurity.com/files/169687/OpenSSL-Security-Advisory-20221101.html

Url: http://www.openwall.com/lists/oss-security/2022/11/03/1

Url: http://www.openwall.com/lists/oss-security/2022/11/03/5

Url: http://www.openwall.com/lists/oss-security/2022/11/03/2

Url: http://www.openwall.com/lists/oss-security/2022/11/03/3

Url: http://www.openwall.com/lists/oss-security/2022/11/01/21

Url: http://www.openwall.com/lists/oss-security/2022/11/01/20

Url: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c42165b5706e42f67ef8ef4c351a9a4c5d21639a

Url: http://www.openwall.com/lists/oss-security/2022/11/01/24

Url: http://www.openwall.com/lists/oss-security/2022/11/02/9

Url: http://www.openwall.com/lists/oss-security/2022/11/02/7

Url: http://www.openwall.com/lists/oss-security/2022/11/01/18

Url: http://www.openwall.com/lists/oss-security/2022/11/01/17

Url: http://www.openwall.com/lists/oss-security/2022/11/01/16

Url: https://security.gentoo.org/glsa/202211-01

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DWP23EZYOBDJQP7HP4YU7W2ABU2YDITS/

Url: https://security-tracker.debian.org/tracker/CVE-2022-3786

Url: http://www.openwall.com/lists/oss-security/2022/11/01/15

Url: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0023

Url: https://www.mend.io/vulnerability-database/CVE-2022-3786

Severity Score

7.5

Weakness Type (CWE)

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-120

Top Fix

Upgrade Version

Upgrade to version openssl-3.0.7

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Do you need more information?

Contact Us