VDB

ALPINE-CVE-2022-4304

ALPINE-CVE-2022-4304 PUBLISHED CVSS 5.900000095367432 MEDIUM

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE. For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the application data sent over that connection.

Risk Scores

CVSS 3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
Alpine:v3.19openssl1.1.1d-r1, 3.0.0-r3, 3.0.0-r2
Alpine:v3.15openssl1.1.1l-r3, 1.1.1l-r2, *
Alpine:v3.15openssl31.1.1-r3, *, 0
Alpine:v3.20openssl1.1.1i-r0, 1.1.1h-r0, 1.1.1f-r0
Alpine:v3.18openssl1.1.1d-r1, 0, 1.1.1-r0
Alpine:v3.14openssl1.1.1n-r0, 1.0.2, 1.1.1
Alpine:v3.23openssl3.0.5-r1, 1.1.1-r0, 1.1.1-r1
Alpine:v3.22openssl1.1.1-r2, 1.1.1-r3, 1.1.1-r4
Alpine:v3.17openssl*, 1.1.1-r0, 1.1.1-r1
Alpine:v3.24openssl1.0.2
Alpine:v3.16openssl31.1.1e-r0, 1.1.1g-r0, 1.1.1h-r0
Alpine:v3.16openssl1.1.1l-r2, 1.1.1l-r3, 1.1.1l-r4
Alpine:v3.21openssl1.1.1, 1.1.1, 1.1.1

Timeline

  • Feb 8, 2023 CVE Published
  • Apr 30, 2026 Distribution Patch
  • Jul 8, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›