CVE-2019-1549

Name	CVE-2019-1549
Description	OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG state. However this protection was not being used in the default case. A partial mitigation for this issue is that the output from a high precision timer is mixed into the RNG state so the likelihood of a parent and child process sharing state is significantly reduced. If an application already calls OPENSSL_init_crypto() explicitly using OPENSSL_INIT_ATFORK then this problem does not occur at all. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c).
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
openssl (PTS)	buster	1.1.1n-0+deb10u3	fixed
	buster (security)	1.1.1n-0+deb10u4	fixed
	bullseye	1.1.1n-0+deb11u3	fixed
	bullseye (security)	1.1.1n-0+deb11u4	fixed
	bookworm, sid	3.0.8-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version
openssl	source	jessie	(not affected)
openssl	source	stretch	(not affected)
openssl	source	buster	1.1.1d-0+deb10u1
openssl	source	(unstable)	1.1.1d-1
openssl1.0	source	(unstable)	(not affected)

Notes

[stretch] - openssl <not-affected> (Only affects OpenSSL 1.1.1 to 1.1.1c)
[jessie] - openssl <not-affected> (Only affects OpenSSL 1.1.1 to 1.1.1c)
- openssl1.0 <not-affected> (Only affects OpenSSL 1.1.1 to 1.1.1c)
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1b0fe00e2704b5e20334a16d3c9099d1ba2ef1be
https://www.openssl.org/news/secadv/20190910.txt