CVE-2016-2183 in Ubuntu

CVE-2016-2183

Priority

Description

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec
protocols and other protocols and products, have a birthday bound of
approximately four billion blocks, which makes it easier for remote
attackers to obtain cleartext data via a birthday attack against a
long-duration encrypted session, as demonstrated by an HTTPS session using
Triple DES in CBC mode, aka a "Sweet32" attack.

References

https://sweet32.info/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2183
https://access.redhat.com/articles/2548661
https://access.redhat.com/security/cve/cve-2016-2183
https://blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/
https://community.qualys.com/thread/16555
https://github.com/ssllabs/ssllabs-scan/issues/387#issuecomment-242514633
https://nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvb05575
https://security-tracker.debian.org/tracker/CVE-2016-2183
https://twitter.com/symantec/status/768786631159603200
https://www.ietf.org/mail-archive/web/tls/current/msg04560.html
https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/
https://www.openssl.org/blog/blog/2016/08/24/sweet32/
https://www.sigsac.org/ccs/CCS2016/accepted-papers/
https://www.suse.com/security/cve/CVE-2016-2183.html
https://www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issue
https://usn.ubuntu.com/usn/usn-3087-1
http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/5d2bb853ae31
https://usn.ubuntu.com/usn/usn-3179-1
https://usn.ubuntu.com/usn/usn-3194-1
https://usn.ubuntu.com/usn/usn-3198-1
https://usn.ubuntu.com/usn/usn-3270-1
https://usn.ubuntu.com/usn/usn-3372-1

Bugs

https://bugs.python.org/issue27850
https://bugzilla.redhat.com/show_bug.cgi?id=1369383
https://bugzilla.suse.com/show_bug.cgi?id=995359
https://bugzilla.mozilla.org/show_bug.cgi?id=1268745

Notes

mdeslaur

DES ciphers aren't typically selected as there are other
stronger ciphers placed earlier in default cipher lists
gnutls puts AES before 3DES in the cipher list

Package

Source: gnutls26 (LP Ubuntu Debian)

Upstream:	not-affected
Ubuntu 12.04 ESM (Precise Pangolin):	not-affected
Ubuntu 14.04 ESM (Trusty Tahr):	not-affected
Ubuntu 16.04 LTS (Xenial Xerus):	DNE
Ubuntu 18.04 LTS (Bionic Beaver):	DNE

Package

Source: gnutls28 (LP Ubuntu Debian)

Upstream:	not-affected
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was not-affected)
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected
Ubuntu 18.04 LTS (Bionic Beaver):	not-affected

Package

Source: nss (LP Ubuntu Debian)

Upstream:	released (3.27)
Ubuntu 12.04 ESM (Precise Pangolin):	released (2:3.28.4-0ubuntu0.12.04.1)
Ubuntu 14.04 ESM (Trusty Tahr):	released (2:3.28.4-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):	released (2:3.28.4-0ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):	released (2:3.28.4-0ubuntu1)

Patches:

Upstream:	https://hg.mozilla.org/projects/nss/rev/a1b0b7023e19
Upstream:	https://hg.mozilla.org/projects/nss/rev/71da21e9d6e9

Package

Source: openjdk-6 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was released [6b41-1.13.13-0ubuntu0.12.04.1])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was released [6b41-1.13.13-0ubuntu0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):	DNE
Ubuntu 18.04 LTS (Bionic Beaver):	DNE

Package

Source: openjdk-7 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was released [7u121-2.6.8-1ubuntu0.12.04.3])
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was released [7u121-2.6.8-1ubuntu0.14.04.3])
Ubuntu 16.04 LTS (Xenial Xerus):	DNE
Ubuntu 18.04 LTS (Bionic Beaver):	DNE

Package

Source: openjdk-8 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	released (8u121-b13-0ubuntu1.16.04.2)
Ubuntu 18.04 LTS (Bionic Beaver):	not-affected (8u121-b13-3)

Package

Source: openssl (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	released (1.0.1-4ubuntu5.37)
Ubuntu 14.04 ESM (Trusty Tahr):	released (1.0.1f-1ubuntu2.20)
Ubuntu 16.04 LTS (Xenial Xerus):	released (1.0.2g-1ubuntu4.4)
Ubuntu 18.04 LTS (Bionic Beaver):	released (1.0.2g-1ubuntu9)

Patches:

Upstream:	https://git.openssl.org/?p=openssl.git;a=commit;h=0fff5065884d5ac61123a604bbcee30a53c808ff (1.0.2)
Upstream:	https://git.openssl.org/?p=openssl.git;a=commit;h=e95f5e03f6f1f8d3f6cbe4b7fa48e57b4cf8fd60 (1.0.1)

Package

Source: openssl098 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):	DNE (precise was needs-triage)
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was needs-triage)
Ubuntu 16.04 LTS (Xenial Xerus):	DNE
Ubuntu 18.04 LTS (Bionic Beaver):	DNE

More Information

Updated: 2020-09-10 05:08:28 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)