Red Hat Bugzilla – Bug 1283137
CVE-2015-7503 php-ZendFramework2: Usage of vulnerable PKCS#1 v1.5 padding allows to recover RSA private key
Last modified: 2018-06-29 18:06:20 EDT
It was found that `Zend\Crypt\PublicKey\Rsa\PublicKey` has a call to `openssl_public_encrypt()`, which uses PHP's default `$padding` argument, which specifies `OPENSSL_PKCS1_PADDING`, indicating usage of PKCS1v1.5 padding. This padding has a known vulnerability, the Bleichenbacher's chosen-ciphertext attack, that can be used to recover an RSA private key.
This is now public:
Created php-ZendFramework2 tracking bugs for this issue:
Affects: fedora-all [bug 1289317]
Affects: epel-all [bug 1289318]