The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the SSLCipherSuite directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Http_server | Apache | 2.0.35 (including) | 2.0.35 (including) |
| Http_server | Apache | 2.0.36 (including) | 2.0.36 (including) |
| Http_server | Apache | 2.0.37 (including) | 2.0.37 (including) |
| Http_server | Apache | 2.0.38 (including) | 2.0.38 (including) |
| Http_server | Apache | 2.0.39 (including) | 2.0.39 (including) |
| Http_server | Apache | 2.0.40 (including) | 2.0.40 (including) |
| Http_server | Apache | 2.0.41 (including) | 2.0.41 (including) |
| Http_server | Apache | 2.0.42 (including) | 2.0.42 (including) |
| Http_server | Apache | 2.0.43 (including) | 2.0.43 (including) |
| Http_server | Apache | 2.0.44 (including) | 2.0.44 (including) |
| Http_server | Apache | 2.0.45 (including) | 2.0.45 (including) |
| Http_server | Apache | 2.0.46 (including) | 2.0.46 (including) |
| Http_server | Apache | 2.0.47 (including) | 2.0.47 (including) |
| Http_server | Apache | 2.0.48 (including) | 2.0.48 (including) |
| Http_server | Apache | 2.0.49 (including) | 2.0.49 (including) |
| Http_server | Apache | 2.0.50 (including) | 2.0.50 (including) |
| Http_server | Apache | 2.0.51 (including) | 2.0.51 (including) |
| Http_server | Apache | 2.0.52 (including) | 2.0.52 (including) |
| Red Hat Enterprise Linux 3 | RedHat | httpd-0:2.0.46-44.ent | * |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
| Red Hat Linux Advanced Workstation 2.1 | RedHat | * | |
| Red Hat Network Proxy v 4.2 (RHEL 3) | RedHat | jabberd-0:2.0s10-3.37.rhn | * |
| Red Hat Network Proxy v 4.2 (RHEL 3) | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel3 | * |
| Red Hat Network Proxy v 4.2 (RHEL 3) | RedHat | rhn-modperl-0:1.29-16.rhel3 | * |
| Red Hat Network Proxy v 4.2 (RHEL 4) | RedHat | jabberd-0:2.0s10-3.38.rhn | * |
| Red Hat Network Proxy v 4.2 (RHEL 4) | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel4 | * |
| Red Hat Network Proxy v 4.2 (RHEL 4) | RedHat | rhn-modperl-0:1.29-16.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | jabberd-0:2.0s10-3.38.rhn | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | openmotif21-0:2.1.30-11.RHEL4.6 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | perl-Crypt-CBC-0:2.24-1.el4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modperl-0:1.29-16.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel4 | * |
| Red Hat Network Satellite Server v 4.2 | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | jabberd-0:2.0s10-3.37.rhn | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | openmotif21-0:2.1.30-9.RHEL3.8 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | perl-Crypt-CBC-0:2.24-1.el3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modperl-0:1.29-16.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel3 | * |
| Red Hat Network Satellite Server v 4.2 (RHEL3) | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | jabberd-0:2.0s10-3.38.rhn | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | jfreechart-0:0.9.20-3.rhn | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | openmotif21-0:2.1.30-11.RHEL4.6 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | perl-Crypt-CBC-0:2.24-1.el4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-apache-0:1.3.27-36.rhn.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modjk-0:1.2.23-2rhn.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modperl-0:1.29-16.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | rhn-modssl-0:2.8.12-8.rhn.10.rhel4 | * |
| Red Hat Network Satellite Server v 5.0 | RedHat | tomcat5-0:5.0.30-0jpp_10rh | * |
| Red Hat Stronghold 4 | RedHat | * | |
| Stronghold 4.0 for Red Hat Enterprise Linux AS (version 2.1) | RedHat | * | |
| Apache2 | Ubuntu | dapper | * |
| Apache2 | Ubuntu | devel | * |
| Apache2 | Ubuntu | edgy | * |
| Apache2 | Ubuntu | feisty | * |
| Libapache-mod-ssl | Ubuntu | dapper | * |
| Libapache-mod-ssl | Ubuntu | edgy | * |
| Libapache-mod-ssl | Ubuntu | feisty | * |
References
- http://issues.apache.org/bugzilla/show_bug.cgi?id=31505
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://marc.info/?l=bugtraq\u0026m=109786159119069\u0026w=2
- http://secunia.com/advisories/19072
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1
- http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
- http://www.apacheweek.com/features/security-20
- http://www.redhat.com/support/errata/RHSA-2004-562.html
- http://www.redhat.com/support/errata/RHSA-2004-600.html
- http://www.redhat.com/support/errata/RHSA-2005-816.html
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securityfocus.com/bid/11360
- http://www.ubuntu.com/usn/usn-177-1
- http://www.vupen.com/english/advisories/2006/0789
- http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01123
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17671
- https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10384
- http://issues.apache.org/bugzilla/show_bug.cgi?id=31505
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://marc.info/?l=bugtraq\u0026m=109786159119069\u0026w=2
- http://secunia.com/advisories/19072
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1
- http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
- http://www.apacheweek.com/features/security-20
- http://www.redhat.com/support/errata/RHSA-2004-562.html
- http://www.redhat.com/support/errata/RHSA-2004-600.html
- http://www.redhat.com/support/errata/RHSA-2005-816.html
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securityfocus.com/bid/11360
- http://www.ubuntu.com/usn/usn-177-1
- http://www.vupen.com/english/advisories/2006/0789
- http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01123
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17671
- https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E
- https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10384