diff --git a/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.json b/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.json new file mode 100644 index 0000000000000000000000000000000000000000..f5635396d58dba07b520226fa4a19575338d1528 --- /dev/null +++ b/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.json @@ -0,0 +1,142 @@ +{ + "month": "2023-10", + "release_time": "2023-10-10 16:55:24", + "vulnerabilities": [ + { + "month": "2023-10", + "vul_id": { + "cve": "CVE-2023-3817", + "openharmony-sa": "" + }, + "severity": "medium", + "vul_description": { + "zh": "OpenSSL组件的crypto/dh/dh_check.c文件中,检查过长的 DH 密钥或参数可能会非常慢", + "en": "In the crypto/dh/dh_check.c file of the OpenSSL component, checking for DH keys or parameters that are too long may be very slow." + }, + "vul_impact": { + "zh": "如果正在检查的密钥或参数是从不受信任的来源获取的,则可能会导致拒绝服务攻击", + "en": "If the key or parameter being checked is obtained from an untrusted source, this may lead to a denial of service attack" + }, + "disclosure": { + "zh": "https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2023/2023-09.md", + "en": "https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2023/2023-09.md" + }, + "patch_info": { + "3.0.x": { + "patch_url": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/132" + ], + "patch_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/132.patch" + ], + "diff_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/132.diff" + ] + }, + "3.1.x": { + "patch_url": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/131" + ], + "patch_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/131.patch" + ], + "diff_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/131.diff" + ] + }, + "3.2.x": { + "patch_url": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/130" + ], + "patch_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/130.patch" + ], + "diff_file": [ + "https://gitee.com/openharmony/third_party_openssl/pulls/130.diff" + ] + } + }, + "affected_projects": "third_party_openssl", + "affected_versions": [ + "3.0.0-3.0.8", + "3.1.0-3.1.7", + "3.2.0-3.2.1" + ], + "affected_device": { + "mini": { + "liteos": { + "rics-v": { + "scan_strategy": { + "ssts": { + "enable": false + }, + "ists": { + "enable": false + } + } + } + } + }, + "small": { + "liteos": { + "rics-v": { + "scan_strategy": { + "ssts": { + "enable": false + }, + "ists": { + "enable": false + } + } + } + }, + "linux": { + "arm": { + "scan_strategy": { + "ssts": { + "enable": false + }, + "ists": { + "enable": false + } + } + } + } + }, + "standard": { + "linux": { + "arm": { + "scan_strategy": { + "ssts": { + "enable": false + }, + "ists": { + "enable": true, + "yara": { + "affected_files": [ + "/system/lib/libcrypto.so", + "/system/lib64/libcrypto.so" + ], + "yara_rules": [ + "TestCaseRule-OpenHarmony-CVE-2023-3817.yara" + ] + } + } + } + }, + "arm64": { + "scan_strategy": { + "ssts": { + "enable": false + }, + "ists": { + "enable": false + } + } + } + } + } + } + } + ] +} \ No newline at end of file diff --git a/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.yara b/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.yara new file mode 100644 index 0000000000000000000000000000000000000000..bcd89d5301fb0d1e6f5261532a2640615fe13a46 --- /dev/null +++ b/zh/security-vulntest/testcases/2023/10/OpenHarmony-CVE-3817/TestCaseInfo-OpenHarmony-CVE-2023-3817.yara @@ -0,0 +1,28 @@ +/* + * Copyright (c) 2024 Beijing University of Posts and Telecommunications. + * + * Licensed under the Apache License, Version 2.0 (the "License"); + * you may not use this file except in compliance with the License. + * You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the License is distributed on an "AS IS" BASIS, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the License for the specific language governing permissions and + * limitations under the License. + */ +import "console" + +rule TestCaseRule-OpenHarmony-CVE-2023-3817 +{ + meta: + date = "2023-10-10" + file ="/system/lib/libcrypto.z.so" + strings: + $vul = {48 83 7B 40 00 48 83 7B 00 00} + $fix = {48 8B 73 40 48 8B 7B 08 48 85 F6 74 15 E8 AE 83 FC FF 85 C0 0F 8F 9E 00 00 00} + condition: + ((not $vul) and $fix) and console.log("TestCaseRule-OpenHarmony-CVE-2023-3817 testcase pass") +} \ No newline at end of file