{ "document": { "aggregate_severity": { "text": "Medium" }, "category": "csaf_vex", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/rhel7els/vex/2023/cve-2023-1255-els_os-rhel7els.json" } ], "tracking": { "current_release_date": "2026-06-13T03:10:20Z", "generator": { "date": "2026-06-13T03:10:20Z", "engine": { "name": "pyCSAF" } }, "id": "CVE-2023-1255-ELS_OS-RHEL7ELS", "initial_release_date": "2023-04-20T17:15:00Z", "revision_history": [ { "date": "2023-04-20T17:15:00Z", "number": "1", "summary": "Initial version" }, { "date": "2026-06-13T03:10:20Z", "number": "2", "summary": "Official Publication" } ], "status": "final", "version": "2" }, "title": "Security update on CVE-2023-1255" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux 7", "product": { "name": "Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7", "product_identification_helper": { "cpe": "cpe:2.3:o:redhat:enterprise_linux:7:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "openssl11-static-1:1.1.1k-7.el7.x86_64", "product": { "name": "openssl11-static-1:1.1.1k-7.el7.x86_64", "product_id": "openssl11-static-1:1.1.1k-7.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl11-static@1.1.1k-7.el7?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-devel-1:1.1.1k-7.el7.x86_64", "product": { "name": "openssl11-devel-1:1.1.1k-7.el7.x86_64", "product_id": "openssl11-devel-1:1.1.1k-7.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl11-devel@1.1.1k-7.el7?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-libs-1:1.1.1k-7.el7.x86_64", "product": { "name": "openssl11-libs-1:1.1.1k-7.el7.x86_64", "product_id": "openssl11-libs-1:1.1.1k-7.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl11-libs@1.1.1k-7.el7?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-1:1.1.1k-7.el7.x86_64", "product": { "name": "openssl11-1:1.1.1k-7.el7.x86_64", "product_id": "openssl11-1:1.1.1k-7.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssl11@1.1.1k-7.el7?arch=x86_64&epoch=1" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat, Inc." }, { "branches": [ { "branches": [ { "category": "product_version", "name": "openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product": { "name": "openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_id": "openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/openssl11-static@1.1.1k-7.el7.tuxcare.els1?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product": { "name": "openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_id": "openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/openssl11-devel@1.1.1k-7.el7.tuxcare.els1?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product": { "name": "openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_id": "openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/openssl11-libs@1.1.1k-7.el7.tuxcare.els1?arch=x86_64&epoch=1" } } }, { "category": "product_version", "name": "openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product": { "name": "openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_id": "openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/openssl11@1.1.1k-7.el7.tuxcare.els1?arch=x86_64&epoch=1" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "TuxCare" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64" }, "product_reference": "openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-static-1:1.1.1k-7.el7.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.x86_64" }, "product_reference": "openssl11-static-1:1.1.1k-7.el7.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64" }, "product_reference": "openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-devel-1:1.1.1k-7.el7.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.x86_64" }, "product_reference": "openssl11-devel-1:1.1.1k-7.el7.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64" }, "product_reference": "openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-libs-1:1.1.1k-7.el7.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.x86_64" }, "product_reference": "openssl11-libs-1:1.1.1k-7.el7.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64" }, "product_reference": "openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "relates_to_product_reference": "Red-Hat-7" }, { "category": "default_component_of", "full_product_name": { "name": "openssl11-1:1.1.1k-7.el7.x86_64 as a component of Red Hat Enterprise Linux 7", "product_id": "Red-Hat-7:openssl11-1:1.1.1k-7.el7.x86_64" }, "product_reference": "openssl11-1:1.1.1k-7.el7.x86_64", "relates_to_product_reference": "Red-Hat-7" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-1255", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "description", "text": "Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM\nplatform contains a bug that could cause it to read past the input buffer,\nleading to a crash.\n\nImpact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM\nplatform can crash in rare circumstances. The AES-XTS algorithm is usually\nused for disk encryption.\n\nThe AES-XTS cipher decryption implementation for 64 bit ARM platform will read\npast the end of the ciphertext buffer if the ciphertext size is 4 mod 5 in 16\nbyte blocks, e.g. 144 bytes or 1024 bytes. If the memory after the ciphertext\nbuffer is unmapped, this will trigger a crash which results in a denial of\nservice.\n\nIf an attacker can control the size and location of the ciphertext buffer\nbeing decrypted by an application using AES-XTS on 64 bit ARM, the\napplication is affected. This is fairly unlikely making this issue\na Low severity one.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "known_affected": [ "Red-Hat-7:openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2023-1255" }, { "category": "external", "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=02ac9c9420275868472f33b01def01218742b8bb", "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=02ac9c9420275868472f33b01def01218742b8bb" }, { "category": "external", "summary": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=bc2f61ad70971869b242fc1cb445b98bad50074a", "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=bc2f61ad70971869b242fc1cb445b98bad50074a" }, { "category": "external", "summary": "https://security.netapp.com/advisory/ntap-20230908-0006/", "url": "https://security.netapp.com/advisory/ntap-20230908-0006/" }, { "category": "external", "summary": "https://www.openssl.org/news/secadv/20230419.txt", "url": "https://www.openssl.org/news/secadv/20230419.txt" } ], "release_date": "2023-04-20T17:15:00Z", "remediations": [ { "category": "no_fix_planned", "date": "2026-06-12T12:57:37.518020Z", "details": "- This issue is confined to OpenSSL 3.0.x/3.1.0 on 64‑bit ARM and only in the AES‑XTS decryption path; x86‑64 systems and OpenSSL 1.1.1/1.0.2 are not affected. \n- Exploitation demands an application that performs AES‑XTS decryption on attacker‑supplied data and lets the attacker precisely control both the ciphertext length (number of 16‑byte blocks ≡ 4 mod 5) and the buffer’s placement in memory; even then, the effect is only an out‑of‑bounds read that can crash the process (availability impact only), with no confidentiality or integrity loss. \n- TLS does not use AES‑XTS and Linux disk encryption (dm‑crypt) runs in the kernel rather than OpenSSL user space, so this code path is not exposed by typical network services on managed enterprise servers/VMs, making the CVE a low‑priority concern.", "product_ids": [ "Red-Hat-7:openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Red-Hat-7:openssl11-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-devel-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-libs-1:1.1.1k-7.el7.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.tuxcare.els1.x86_64", "Red-Hat-7:openssl11-static-1:1.1.1k-7.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] } ] }