VDB
GCVE-110-MAGEIA-2017-42
GCVE-110-MAGEIA-2017-42
Advisory Published
There is a carry propagation bug in the Broadwell-specific Montgomery
multiplication procedure that handles input lengths divisible by, but
longer than 256 bits. mong EC algorithms only Brainpool P-512 curves are
affected and one presumably can attack ECDH key negotiation
(CVE-2016-7055).
If an SSL/TLS server or client is running on a 32-bit host, and a specific
cipher is being used, then a truncated packet can cause that server or
client to perform an out-of-bounds read, usually resulting in a crash. The
crash can be triggered when using RC4-MD5, if it has not been disabled
(CVE-2017-3731).
There is a carry propagating bug in the x86_64 Montgomery squaring
procedure. An attacker would need online access to an unpatched system
using the target private key in a scenario with persistent DH parameters
and a private key that is shared between multiple clients (CVE-2017-3732).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | 0ad-data | 0 (affected), 0.0.22-1.mga6 (unaffected) | — |
| Mageia | openssl | 0 (affected), 1.0.2k-1.mga5 (unaffected), 1.0.2k-1.mga5 (unaffected), 0 (affected) | — |
| Mageia | 0ad | 0 (affected), 0.0.22-1.1.mga6 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,196 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.