Bug 1709229 (CVE-2019-11323)

Summary: CVE-2019-11323 haproxy: weak HMAC keys used to TLS session resumption after reload with rotated keys
Product: [Other] Security Response Reporter: Dhananjay Arunesh <darunesh>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: ahardin, bleanhar, bmontgom, bperkins, carl, ccoleman, dedgar, dominik.mierzejewski, eparis, hhorak, jburrell, jeremy, jgoulding, jokerman, jorton, mchappel, nstielau, rohara, sponnaga
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: haproxy 1.9.7 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-05-17 11:01:46 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1709230    
Bug Blocks: 1709232    

Description Dhananjay Arunesh 2019-05-13 08:35:38 UTC 
HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use
of uninitialized, and very predictable, HMAC keys. This is related to an
include/types/ssl_sock.h error.

Reference:
https://www.mail-archive.com/haproxy@formilux.org/msg33410.html

Upstream commit:
http://git.haproxy.org/?p=haproxy.git;a=commit;h=8ef706502aa2000531d36e4ac56dbdc7c30f718d
Comment 1 Dhananjay Arunesh 2019-05-13 08:35:56 UTC 
Created haproxy tracking bugs for this issue:

Affects: fedora-all [bug 1709230]
Comment 2 Ryan O'Hara 2019-05-14 20:41:07 UTC 
We don't currently have haproxy-1.9 in Fedora and this doesn't appear to be an issue for 1.8, so I think we can close this?
Comment 3 Dhananjay Arunesh 2019-05-15 06:24:36 UTC 
In reply to comment #2:
> We don't currently have haproxy-1.9 in Fedora and this doesn't appear to be
> an issue for 1.8, so I think we can close this?

yes, I have also checked in koji and found that we don't have haproxy-1.9 for fedora. Hence, you can close this from your end.
Comment 4 Sam Fowler 2019-05-17 07:48:08 UTC 
Introduced by:

http://git.haproxy.org/?p=haproxy.git;a=commit;h=9e7547740cc2d0a6851de8ca9ac57488bdbb8bf2
Comment 5 Tomas Hoger 2019-05-17 11:01:46 UTC 
In reply to comment #4:
> Introduced by:
> 
> http://git.haproxy.org/?p=haproxy.git;a=commit;h=9e7547740cc2d0a6851de8ca9ac57488bdbb8bf2

This was first included in version 1.9.2.  Hence only versions 1.9.2 - 1.9.6 were affected.  Those versions are not included in any Red Hat products.
Comment 6 Tomas Hoger 2019-05-17 11:04:48 UTC 
In reply to comment #5:
> This was first included in version 1.9.2.  Hence only versions 1.9.2 - 1.9.6
> were affected.

Upstream confirms this only affected 1.9.2 and above in this upstream mailing list post:

https://www.mail-archive.com/haproxy@formilux.org/msg33818.html