Heartbleed: What is it and what are options to mitigate it?

First, before freaking out, be sure that you understand whether or not this vulnerability actually applies to you. If you have a server, but have never actually had any applications using TLS, then this is not a high-priority thing for you to fix. If, on the other hand, you have ever had TLS-enabled applications, well then you’re in for a treat. Read on:

What exactly is CVE-2014-0160 aka “Heartbleed”?

It’s a big fricking mess, that’s what it is. In short, a remotely-exploitable vulnerability was discovered in OpenSSL versions 1.0.1 through 1.0.1f through which an attacker can read certain parts of system memory. Those parts being that which hold sensitive data such as private keys, preshared keys, passwords and high valued corporate data among other things.

The bug was independently discovered by Neel Mehta of Google Security (March 21, 2014) and Finnish IT security testing firm Codenomicon (April 2, 2014).

What is the cause?

Well, errant code in OpenSSL. Here is the commit that introduced the vulnerability, and here is the commit that fixed the vulnerability. The bug showed up in December of 2011 and was patched today, April 7th, 2014.

The bug can also be seen as a symptom of a larger problem. The two related problems are (1) what process are in place to ensure errant code is not introduced to a code base, and (2) why are the protocols and extensions so complex and hard to test. Item (1) is a governance and process issue with OpenSSL and many other projects. Many developers simply resist practices such as code reviews, analysis and scanning. Item (2) is being discussed on the IETF’s TLS WG. See Heartbleed / protocol complexity.

Was the errant code maliciously inserted?

I won’t speculate on whether this was truly a mistake or possibly a bit of code slipped in on behalf of a bad actor. However, the person who developed the code for OpenSSL states it was inadvertent. See Man who introduced serious ‘Heartbleed’ security flaw denies he inserted it deliberately.

What OSs and versions of OpenSSL are vulnerable?

As mentioned above, any operating system that is using, or application that is linked against OpenSSL 1.0.1 through 1.0.1f.

What are the symptoms, are any methods to detect a successful exploit?

This is the scary part. As far as we know, there is no known way to detect whether or not this vulnerability has been exploited. It is theoretically possible that IDS signatures will be released soon that can detect this exploit, but as of this writing, those are not available.

There is evidence that Heartbleed was being actively exploited in the wild as early as November, 2013. See the EFF’s Wild at Heart: Were Intelligence Agencies Using Heartbleed in November 2013? And Bloomberg reports the NSA had weaponized the exploit shortly after the vulnerability was introduced. See NSA Said to Exploit Heartbleed Bug for Intelligence for Years. However, the US Intelligence Community denies Bloomberg’s claims. See IC ON THE RECORD.

How can I check to see if my system is affected?

If you are maintaining OpenSSL on your system, then you can simply issue openssl version:

$ openssl version
OpenSSL 1.0.1g 7 Apr 2014

If the distribution is maintaining OpenSSL, then you probably can’t determine the version of OpenSSL due to back patching using openssl command or the package information (for example, apt-get, dpkg, yum or rpm). The back patching process used by most (all?) distributions only uses the base version number (for example, “1.0.1e”); and does not include an effective security version (for example, “1.0.1g”).

There’s an open question on Super User to determine the effective security version for OpenSSL and other packages when packages are backpatched. Unfortunately, there are no useful answers (other than check the distro’s website). See Determine Effective Security Version when faced with Backpatching?.

As a rule of thumb: if you have ever installed one of the affected versions, and have ever run programs or services that linked against OpenSSL for TLS support, then you are vulnerable.

Where can I find a program to test for the vulnerability?

Within hours of the Heartbleed announcement, several people on the internet had publicized publicly-accessible web applications that supposedly could be used to check a server for the presence of this vulnerability. As of this writing, I have not reviewed any, so I won’t further publicize their applications. They can be found relatively easily with the help of your preferred search engine.

How is this vulnerability mitigated?

Upgrade to a non-vulnerable version and reset or re-secure vulnerable data. As noted on the Heartbleed site, appropriate response steps are broadly:

  1. Patch vulnerable systems.
  2. Regenerate new private keys.
  3. Submit new CSR to your CA.
  4. Obtain and install new signed certificate.
  5. Invalidate session keys and cookies
  6. Reset passwords and shared secrets
  7. Revoke old certificates.

For a more detailed analysis and answer, see What should a website operator do about the Heartbleed OpenSSL exploit? on the Security Stack Exchange.

Should I be concerned that my keys or other private data have been
compromised? What other side effects should I be concerned about?

Absolutely. Systems Administrators need to assume that their servers which used vulnerable OpenSSL versions are indeed compromised and respond accordingly.

Shortly after the vulnerability was disclosed, Cloudfare offered a challenge to see if a server’s private key could be recovered in practice. The challenge was independently won by Fedor Indutny and Ilkka Mattila. See The Heartbleed Challenge.

Where can I find more information?

Link dump, for those looking for more details:

A rather detailed timeline of the disclosure events can be found at Heartbleed disclosure timeline: who knew what and when.

If you are a programmer and are interested in various programming tricks like detecting a Heartbleed attack through OpenSSL’s msg_cb callback, then see OpenSSL’s Security Advisory 2014047.

Related Posts:

  1. SSL Error: unable to get local issuer certificate
  2. Heartbleed: how to reliably and portably check the OpenSSL version?
  3. what is a auth_user_file.txt?
  4. Is moving wp-config outside the web root really beneficial?
  5. Can I Prevent Enumeration of Usernames?
  6. Best way to eliminate xmlrpc.php?
  7. If a hacker changed the blog_charset to UTF-7 does that make WordPress vulnerable to further attacks?
  8. Should I remove install.php and install-helper.php?
  9. Are Nonces Useless?
  10. What is the difference between esc_html filter vs attribute_escape filter?
  11. How do I technically prove that WordPress is secure?
  12. Which KSES should be used and when?
  13. How do WordPress Nonces Work?
  14. How can I easily verify a core or plugin update has not broken anything?
  15. Disable comment windows for all existing posts (pages/blogposts)
  16. Generate WordPress salt
  17. Vanilla WordPress install, what can/should I put in disable_functions?
  18. Stop wordpress automatically escaping $_POST data
  19. Secure my “add_settings_field” translation?
  20. how can i embed wordpress backend in iframe
  21. Handling nonces for actions from guests to logged-in users
  22. WordPress Logout Only If User Click Logout or If User Delete Browser History
  23. Can I force a password change?
  24. How brute-forcer knows that the password is cracked for target username?
  25. wp_insert_post disable HTML filter
  26. What is pclzip.lib.php file that wordfence think it’s a malicious code
  27. Can someone (Support of my themeprovider) get access to my server If I send them my admin login?
  28. How to disable XML-RPC from Linux command-line in a total way?
  29. How to remove javascript malware in wordpress site [closed]
  30. Completely remove the author url
  31. Securing my WordPress Files and Directories
  32. Restricting access to content
  33. About WordPress site security
  34. Single sign-on: wp_authenticate_user vs wp_authenticate
  35. How to allow internal links using wp_kses filtration
  36. How does Cross Site Scripting (XSS) work exactly? [closed]
  37. Relative security of different releases of WordPress
  38. How does the “authentication unique keys and salts” feature work?
  39. vs WordPress Security
  40. esc_html__ security : what for in this example?
  41. Using HTACCESS for Secret Access
  42. wp-config.php being written by attacker
  43. XML-RPC errors they know my username?
  44. Is [admin / admin] acceptable for all local websites?
  45. Simple Online Payment for Event Registration [closed]
  46. What may be causing failure of auto-install features in WordPress (v3.0.3)?
  47. Client side HTTP parameter pollution (reflected)
  48. Local file inclusion critical security issue [closed]
  49. Malware script in database post table only? [closed]
  50. Best practices to assert current_user_can() with guests
  51. wordpress website host price and security [closed]
  52. XMLRPC slow and weird websites/services
  53. Are there security risks in working directly in the themes folder that builds into a theme folder?
  54. Is it safe to hand over the admin rights?
  55. how much information can we hide when using wordpress cms?
  56. How to find exploited wordpress plugin [closed]
  57. How I can open back door for myself?
  58. Basic password protection without using users and roles
  59. System setting changed by system user
  60. How can I force a specific password?
  61. Are SVG image files safe to upload? Why WP defines them as a security risk? [duplicate]
  62. Who updates the wp-admin/core file?
  63. How WordPress sanitizes post content on save? Or it doesn’t?
  64. Does this code indicate an exploit?
  65. Security issue with ‘paged’ and ‘posts_per_page’ parameters taken directly from a POST request?
  66. How to prevent to direct access of my custom plugin folder/files
  67. Checking for origin of a xmlrpc request
  68. RESTRICT EDIT of PHP files?
  69. wp-content – permissions for files/folders created by apache
  70. How can I restrict access to specific parts of a page, not just the page itself?
  71. Has anyone developed a anti-spam plugin to simply allow users to BLOCK whatever they wish to, but one that will also go easy on IP addresses?
  72. User generated content and security
  73. Monitor wordpress all external calls
  74. HSTS header not being added correctly
  75. how to protect wordpress content from crawler
  76. Securing WordPress running on Azure platform
  77. Can WordPress admin user + database credentials be used to gain Cpanel or FTP access?
  78. Should I worry about SQL injection when using REST API?
  79. Spam Registrations
  80. Links to root domain from search engines don’t work, but direct links and links from other referrers do
  81. How can I backup my site if it gets hacked?
  82. Standard Method for Securing a WordPress Site
  83. Avoid ‘uploads’ 777 permissions: Potential threat or clean solution?
  84. Secure Multiple WordPress Installations on shared hosting
  85. Any way to disable /wp-login.php redirecting to the site folder?
  86. Able to go to WordPress admin even after deleting auth cookies from request headers
  87. Is WordPress ready for GDPR compliance? [closed]
  88. Step by Step Instructions for Making Media/Uploads Private to Only Logged-In Users
  89. Secure a WordPress website in 2019: one plugin or a combinations of them?
  90. What are the different types of firewall protections available for a WordPress website?
  91. Should WordPress Add Options to Enhance Security or Leave it to plugin developers? [closed]
  92. Is this a WordPress security bug?
  93. Competitor is somehow accessing MetaData on a hidden WordPress site
  94. WordPress Hacks/Defacing [closed]
  95. Bank account number and Sort Code in a form [closed]
  96. I am under DDoS. What can I do?
  97. SSH keypair generation: RSA or DSA?
  98. How do I protect my company from my IT guy? [closed]
  99. Does changing default port number actually increase security? [closed]
  100. WordPress – tracking options

Leave a Comment