CVE-2018-15836

Опубликовано: 17 авг. 2018

Источник: redhat

CVSS3: 6.5

Описание

In verify_signed_hash() in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify the value of padding string during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used. IKEv2 signature verification is affected when RAW RSA keys are used.

Отчет

This flaw only affects openswan versions compiled without NSS. When NSS is used as cryptographic library, the RSA routines from NSS are used instead of the custom openswan RSA code that contains the vulnerability. Red Hat Enterprise Linux has only ever shipped with NSS enabled openswan versions, so no Red Hat products are vulnerable to this bug.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	openswan	Not affected
Red Hat Enterprise Linux 6	openswan	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-347

https://bugzilla.redhat.com/show_bug.cgi?id=1618861openswan: Improper signature verification in try_RSA_signature_v2() fucntion for RSASSA-PKCS1-v1_5 signature scheme

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-15836

CVSS3: 7.5

ubuntu

больше 7 лет назад

CVE-2018-15836

CVSS3: 7.5

nvd

больше 7 лет назад

CVE-2018-15836

CVSS3: 7.5

debian

больше 7 лет назад

In verify_signed_hash() in lib/liboswkeys/signatures.c in Openswan bef ...

GHSA-3qpc-4533-p5rr

CVSS3: 7.5

github

больше 3 лет назад

6.5 Medium

CVSS3