AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimized implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was pre-existing in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed.

Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected.

Affected Packages

crates.io openssl-src

Affected versions: 0 (fixed in 111.22.0)

crates.io openssl-src

Affected versions: 300.0.0 (fixed in 300.0.9)

Related CVEs

CVE-2022-2097

Key Information

GHSA ID

GHSA-3wx7-46ch-7rq2

Published

July 6, 2022 7:57 PM

Last Modified

June 24, 2024 9:24 PM

CVSS Score

7.5 /10

Primary Ecosystem

crates.io

Primary Package

openssl-src

GitHub Reviewed

✓ Yes

Dataset

Last updated: September 11, 2025 6:35 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.