CVE-2009-0124

The tqsl_verifyDataBlock function in openssl_cert.cpp in American Radio Relay League (ARRL) tqsllib 2.0 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name	Vendor	Start Version	End Version
Tqsllib	Arrl	2.0 (including)	2.0 (including)
Tqsllib	Ubuntu	dapper	*
Tqsllib	Ubuntu	gutsy	*
Tqsllib	Ubuntu	hardy	*
Tqsllib	Ubuntu	intrepid	*
Tqsllib	Ubuntu	upstream	*

Potential Mitigations

https://cwe.mitre.org/data/definitions/114.html
https://cwe.mitre.org/data/definitions/115.html
https://cwe.mitre.org/data/definitions/151.html
https://cwe.mitre.org/data/definitions/194.html
https://cwe.mitre.org/data/definitions/22.html
https://cwe.mitre.org/data/definitions/57.html
https://cwe.mitre.org/data/definitions/593.html
https://cwe.mitre.org/data/definitions/633.html
https://cwe.mitre.org/data/definitions/650.html
https://cwe.mitre.org/data/definitions/94.html

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511509
http://openwall.com/lists/oss-security/2009/01/12/4
http://secunia.com/advisories/33543
https://bugzilla.redhat.com/show_bug.cgi?id=479650
https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00557.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-0124
CWE	https://cwe.mitre.org/data/definitions/287.html

Improper Authentication

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References