Add page describing CVEs and their impact on the FIPS provider.

Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org>
openssl · May 7, 2023 · 9ff4394 · 9ff4394
1 parent 288e140
commit 9ff4394
Show file tree

Hide file tree

Showing 4 changed files with 56 additions and 3 deletions.
diff --git a/news/dirdata.yaml b/news/dirdata.yaml
@@ -8,5 +8,6 @@ sidebar:
 
     -   [Newslog](newslog.html)
     -   [Vulnerabilities](vulnerabilities.html)
+    -   [CVEs and FIPS](fips-cve.html)
     -   [Changelog](changelog.html)
 ---
diff --git a/news/fips-cve.md b/news/fips-cve.md
@@ -0,0 +1,41 @@
+---
+breadcrumb: CVEs and FIPS
+---
+# CVEs and the FIPS provider
+
+After the release of OpenSSL 3.0.0, several CVEs have been identified
+and resolved.  While the majority of these vulnerabilities are unrelated
+to the validated FIPS provider, a few of them are applicable.  This table
+lists all of the CVEs issued since the FIPS provider's release and their
+relevance to it:
+
+
+CVE ID | Fixed | FIPS? | Notes
+----- | :-: | :-: | :---------------
+CVE-2023-1255 | 3.0.9 | **yes** | Possible denial of service on Arm 64 (aarch64) using AES XTS mode
+CVE-2023-0466 | 3.0.9 | no |
+CVE-2023-0465 | 3.0.9 | no |
+CVE-2023-0464 | 3.0.9 | no |
+CVE-2023-0401 | 3.0.8 | no |
+CVE-2023-0286 | 3.0.8 | no |
+CVE-2023-0217 | 3.0.8 | **yes** | DSA public key checks (but not from TLS)
+CVE-2023-0216 | 3.0.8 | no |
+CVE-2023-0215 | 3.0.8 | no |
+CVE-2022-4450 | 3.0.8 | no |
+CVE-2022-4304 | 3.0.8 | **yes** | Timing side channel in RSA
+CVE-2022-4203 | 3.0.8 | no |
+CVE-2022-3996 | 3.0.8 | no |
+CVE-2022-3786 | 3.0.7 | no |
+CVE-2022-3602 | 3.0.7 | no |
+CVE-2022-3358 | 3.0.6 | no |
+CVE-2022-2274 | 3.0.5 | no | Bug introduced in 3.0.4 which isn't validated
+CVE-2022-2097 | 3.0.5 | no | Architecture (x86) is not part of validation
+CVE-2022-2068 | 3.0.4 | no |
+CVE-2022-1473 | 3.0.3 | no |
+CVE-2022-1434 | 3.0.3 | no |
+CVE-2022-1343 | 3.0.3 | no |
+CVE-2022-1292 | 3.0.3 | no |
+CVE-2022-0778 | 3.0.2 | _maybe_ | Difficult to encounter inside FIPS boundary
+CVE-2021-4160 | 3.0.1 | no | Architecture (MIPS) is not part of validation
+CVE-2021-4044 | 3.0.1 | no |
+
diff --git a/news/index.md b/news/index.md
@@ -12,5 +12,8 @@ If you think you have found a security bug, or want to look at all the
 vulnerabilities we have published and fixed, visit the
 [Vulnerabilities](vulnerabilities.html) page.
 
+For a list of CVEs and their impact on the FIPS provider, visit the
+[CVEs and FIPS](fips-cve.html) page.
+
 We have an online copy of our [Changelog](changelog.html). It is also
 part of the distribution.
diff --git a/source/index.md b/source/index.md
@@ -24,10 +24,18 @@ to 3.1 or 3.0 as soon as possible. Extended support for 1.0.2 to gain access to
 security fixes for that version is [available](/support/contracts.html).
 
 
-The following OpenSSL version(s) are FIPS validated.
+The following OpenSSL version(s) are FIPS validated:
 
-OpenSSL 3.0.0. Refer to the [Certificate](https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4282)
-and [Security Policy](https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp4282.pdf)
+&nbsp;OpenSSL Version&nbsp; | &nbsp;Certificate&nbsp; | &nbsp;Security Policy&nbsp;
+:-: | :-: | :-:
+3.0.0 | [certificate][cert 3.0.0] | [security policy][secpol 3.0.0]
+
+[cert 3.0.0]: https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4282
+[secpol 3.0.0]: https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp4282.pdf
+
+<br>
+For a list of CVEs and their impact on validated FIPS providers, visit the
+[CVEs and FIPS](/news/fips-cve.html) page.
 
 Please follow the Security Policy instructions to download, build and
 install a validated OpenSSL FIPS provider.