CVE-2023-0215: 
MySQL vulnerability analysis and mitigation

CVE-2023-0215 is a use-after-free vulnerability discovered in OpenSSL's BIOnewNDEF function. The vulnerability was reported on November 29, 2022, by Octavio Galland and Marcel Böhme from Max Planck Institute for Security and Privacy. It affects OpenSSL versions 3.0, 1.1.1, and 1.0.2. The BIOnewNDEF function is a helper function used for streaming ASN.1 data via a BIO, primarily used internally for SMIME, CMS, and PKCS7 streaming capabilities (OpenSSL Advisory).

Under certain conditions, such as when a CMS recipient public key is invalid, the new filter BIO is freed and the function returns a NULL result indicating a failure. However, the BIO chain is not properly cleaned up, and the BIO passed by the caller retains internal pointers to the previously freed filter BIO. If the caller then calls BIOpop() on the BIO, a use-after-free occurs. This vulnerability affects several public API functions including PEMwritebioASN1stream, PEMwritebioCMSstream, PEMwritebioPKCS7stream, SMIMEwriteASN1, SMIMEwriteCMS, and SMIMEwrite_PKCS7 (OpenSSL Advisory).

The vulnerability has been rated as HIGH severity with a CVSS score of 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). When exploited, this vulnerability most likely results in a crash, leading to a denial of service condition (NetApp Advisory).

Users of affected OpenSSL versions should upgrade to the following patched versions: OpenSSL 3.0 users should upgrade to OpenSSL 3.0.8, OpenSSL 1.1.1 users should upgrade to OpenSSL 1.1.1t, and OpenSSL 1.0.2 users should upgrade to OpenSSL 1.0.2zg (premium support customers only). The fix was developed by Viktor Dukhovni and Matt Caswell (OpenSSL Advisory).