Red Hat OpenSSL/Java SWEET32 (CVE-2016-2183) Vulnerability Advisory and Fix

Vulnerability Overview Vulnerability ID: Bug 1369383 (CVE-2016-2183, SWEET32) Vulnerability Type: SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) Report Date: 2016-08-23 09:15 UTC Status: CLOSED ERRATA Priority: Medium Vulnerability Description > Ciphers with 64-bit block sizes used in CBC mode were found to be vulnerable to birthday attack when key renegotiation doesn't happen frequently or at all in long running connections. 3DES cipher as used in TLS protocol is vulnerable to this attack, that allows remote attacker to recover partial plaintext information (XOR of two plaintext blocks). Affected Products and Versions Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 7 Oracle Java for Red Hat Enterprise Linux 5 Oracle Java for Red Hat Enterprise Linux 6 Oracle Java for Red Hat Enterprise Linux 7 Red Hat Satellite 5.6 Red Hat Satellite 5.7 Related Security Updates RHSA-2016:1940 RHSA-2017:0175 RHSA-2017:0175 Mitigation Measures OpenSSL: - DES cipher suites are being moved from HIGH to MEDIUM in OpenSSL 1.0.1u. - 3DES ciphersuites are being moved from HIGH category to MEDIUM in the 1.0.2 branch, and will be disabled by default in the upcoming 1.1.0 release. Java: - Added the 3DES_EDE_CBC to legacy algorithms (using the jdk.tls.legacyAlgorithms security property) which causes all cipher suites using this encryption algorithm to have low priority and only get used if no other non-legacy cipher suite can be negotiated. IBM JDK: - Disabled all TLS/SSL cipher suites using 3DES by default. External Links https://sweet32.info/

Goal Reached Thanks to every supporter — we hit 100%!

Red Hat OpenSSL/Java SWEET32 (CVE-2016-2183) Vulnerability Advisory and Fix