Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).
References
Link Providers
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00054.html cve-icon cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00072.html cve-icon cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00012.html cve-icon cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html cve-icon cve-icon cve-icon
http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html cve-icon cve-icon cve-icon
https://arxiv.org/abs/1909.01785 cve-icon cve-icon cve-icon
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=21c856b75d81eff61aa63b4f036bb64a85bf6d46 cve-icon cve-icon cve-icon
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=30c22fa8b1d840036b8e203585738df62a03cec8 cve-icon cve-icon cve-icon
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a cve-icon cve-icon cve-icon
https://kc.mcafee.com/corporate/index?page=content&id=SB10365 cve-icon cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2019/09/msg00026.html cve-icon cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GY6SNRJP2S7Y42GIIDO3HXPNMDYN2U3A/ cve-icon cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZN4VVQJ3JDCHGIHV4Y2YTXBYQZ6PWQ7E/ cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2019-1547 cve-icon
https://seclists.org/bugtraq/2019/Oct/0 cve-icon cve-icon cve-icon
https://seclists.org/bugtraq/2019/Oct/1 cve-icon cve-icon cve-icon
https://seclists.org/bugtraq/2019/Sep/25 cve-icon cve-icon cve-icon
https://security.gentoo.org/glsa/201911-04 cve-icon cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20190919-0002/ cve-icon cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20200122-0002/ cve-icon cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20200416-0003/ cve-icon cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20240621-0006/ cve-icon cve-icon cve-icon
https://support.f5.com/csp/article/K73422160?utm_source=f5support&amp%3Butm_medium=RSS cve-icon cve-icon cve-icon
https://usn.ubuntu.com/4376-1/ cve-icon cve-icon cve-icon
https://usn.ubuntu.com/4376-2/ cve-icon cve-icon cve-icon
https://usn.ubuntu.com/4504-1/ cve-icon cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2019-1547 cve-icon
https://www.debian.org/security/2019/dsa-4539 cve-icon cve-icon cve-icon
https://www.debian.org/security/2019/dsa-4540 cve-icon cve-icon cve-icon
https://www.openssl.org/news/secadv/20190910.txt cve-icon cve-icon cve-icon
https://www.oracle.com/security-alerts/cpuapr2020.html cve-icon cve-icon cve-icon
https://www.oracle.com/security-alerts/cpujan2020.html cve-icon cve-icon cve-icon
https://www.oracle.com/security-alerts/cpujul2020.html cve-icon cve-icon cve-icon
https://www.oracle.com/security-alerts/cpuoct2020.html cve-icon cve-icon cve-icon
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html cve-icon cve-icon cve-icon
https://www.tenable.com/security/tns-2019-08 cve-icon cve-icon cve-icon
https://www.tenable.com/security/tns-2019-09 cve-icon cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: openssl

Published: 2019-09-10T16:58:35.307121Z

Updated: 2024-09-16T16:33:05.874Z

Reserved: 2018-11-28T00:00:00

Link: CVE-2019-1547

cve-icon Vulnrichment

Updated: 2024-08-04T18:20:28.292Z

cve-icon NVD

Status : Modified

Published: 2019-09-10T17:15:11.750

Modified: 2024-11-21T04:36:48.160

Link: CVE-2019-1547

cve-icon Redhat

Severity : Moderate

Publid Date: 2019-09-10T00:00:00Z

Links: CVE-2019-1547 - Bugzilla