Candidate: CVE-2016-2217
PublicDate: 2017-01-30 22:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2217
 http://www.openwall.com/lists/oss-security/2016/02/01/4
 http://www.dest-unreach.org/socat/contrib/socat-secadv7.html
Description:
 The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not
 use a prime number for the DH, which makes it easier for remote attackers
 to obtain the shared secret.
Ubuntu-Description:
Notes:
 mdeslaur> only affected 1.7.3.0 and 2.0.0-b8
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=813536
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N [5.3 MEDIUM]

Patches_socat:
upstream_socat: released (1.7.3.1-1)
precise_socat: ignored (reached end-of-life)
precise/esm_socat: DNE (precise was needed)
trusty_socat: not-affected (1.7.2.3-1)
trusty/esm_socat: not-affected (1.7.2.3-1)
vivid/stable-phone-overlay_socat: DNE
vivid/ubuntu-core_socat: DNE
wily_socat: ignored (reached end-of-life)
xenial_socat: not-affected (1.7.3.1-1)
yakkety_socat: ignored (reached end-of-life)
zesty_socat: ignored (reached end-of-life)
artful_socat: not-affected (1.7.3.2-1)
devel_socat: not-affected (1.7.3.2-2ubuntu2)