Bug 1967983 (CVE-2021-3580)

Summary: CVE-2021-3580 nettle: Remote crash in RSA decryption via manipulated ciphertext
Product: [Other] Security Response Reporter: Huzaifa S. Sidhpurwala <huzaifas>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: crypto-team, dueno, dwmw2, mike, paul.wouters, rh-spice-bugs, security-response-team
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: nettle 3.7.3 Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in nettle in the way its RSA decryption functions handle specially crafted ciphertext. This flaw allows an attacker to provide a manipulated ciphertext, leading to an application crash and a denial of service.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2021-11-09 21:50:33 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1967986, 1967987, 1967989, 1967990, 1969395, 1969396, 1969398    
Bug Blocks: 1955718, 1967984    

Description Huzaifa S. Sidhpurwala 2021-06-04 15:58:12 UTC 
Multiple issues were found with Nettle's RSA decryption functions. These can be triggered by providing manipulated ciphertext and could lead to application crash and denial of service.

Since nettle is used with gnuTLS, there is a possibility that a remote client could crash a server compiled with gnuTLS when RSA is used for the initial key exchange.
Comment 4 Huzaifa S. Sidhpurwala 2021-06-08 11:07:36 UTC 
Created mingw-nettle tracking bugs for this issue:

Affects: fedora-all [bug 1969396]


Created nettle tracking bugs for this issue:

Affects: fedora-all [bug 1969395]
Comment 5 Huzaifa S. Sidhpurwala 2021-06-08 11:11:34 UTC 
Upstream commits:

https://git.lysator.liu.se/nettle/nettle/-/commit/0ad0b5df315665250dfdaa4a1e087f4799edaefe
https://git.lysator.liu.se/nettle/nettle/-/commit/485b5e2820a057e873b1ba812fdb39cae4adf98c
https://git.lysator.liu.se/nettle/nettle/-/commit/485b5e2820a057e873b1ba812fdb39cae4adf98c
Comment 7 errata-xmlrpc 2021-11-09 18:50:12 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2021:4451 https://access.redhat.com/errata/RHSA-2021:4451
Comment 8 Product Security DevOps Team 2021-11-09 21:50:31 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2021-3580