Описание
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.
The Network Security Services (NSS) package contains a vulnerability that exposes a side-channel information leak. This weakness enables a local attacker to capture several thousand usages of a signature, allowing them to utilize this information to recover portions of an ECDSA private key.
Отчет
The severity of the Network Security Services (NSS) package vulnerability is marked as moderate due to the inherent risk associated with a potential side-channel information leak. This flaw empowers a local attacker to capture a substantial volume of signature usages, providing a pathway for them to exploit this data to reconstruct portions of an ECDSA private key. The ECDSA private key is a fundamental component of cryptographic security, and a successful compromise could have severe implications for the confidentiality and integrity of sensitive information. The side channel present in NSS is on the order of 20 to 50ns, measuring such small differences over the network, without ability to measure signature with the same nonce is not something anybody has shown as possible. The only reason we can measure such small differences in the Marvin attack (https://people.redhat.com/~hkario/marvin/) is because the attacker there has full control over the processed messages, as such can measure the same message over and over, with ECDSA NSS is generating the used nonce randomly, and internally, for each and every signature. So a possibility of a purely network attack is rather theoretical at this moment.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | firefox | Out of support scope | ||
| Red Hat Enterprise Linux 6 | nss | Out of support scope | ||
| Red Hat Enterprise Linux 6 | thunderbird | Out of support scope | ||
| Red Hat Enterprise Linux 7 | firefox | Will not fix | ||
| Red Hat Enterprise Linux 7 | nss | Affected | ||
| Red Hat Enterprise Linux 7 | thunderbird | Out of support scope | ||
| Red Hat Enterprise Linux 8 | firefox | Affected | ||
| Red Hat Enterprise Linux 8 | firefox:flatpak/firefox | Not affected | ||
| Red Hat Enterprise Linux 8 | thunderbird | Not affected | ||
| Red Hat Enterprise Linux 8 | thunderbird:flatpak/thunderbird | Will not fix |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
4.3 Medium
CVSS3
Связанные уязвимости
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.
Multiple NSS NIST curves were susceptible to a side-channel attack kno ...
Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.
EPSS
4.3 Medium
CVSS3