Bug 1542313 – CVE-2018-6594 python-crypto: Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext

Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.

Bug 1542313 - (CVE-2018-6594) CVE-2018-6594 python-crypto: Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext

Summary:	CVE-2018-6594 python-crypto: Weak ElGamal key parameters in PublicKey/ElGamal...

Status:	NEW

Aliases:	CVE-2018-6594

Product:	Security Response
Classification:	Other
Component:	vulnerability (Show other bugs)
Sub Component:
Version:	unspecified
Hardware:	All Linux

Priority	medium Severity medium
Target Milestone:	---
Target Release:	---
Assigned To:	Red Hat Product Security
QA Contact:
Docs Contact:

URL:
Whiteboard:	impact=moderate,public=20180203,repor...
Keywords:	Security

Depends On:	1542315 1542314 1542316 1543114 1543115 1543116
Blocks:	1542317
	Show dependency tree / graph

Reported:	2018-02-06 00:15 EST by Sam Fowler
Modified:	2018-06-29 18:32 EDT (History)
CC List:	53 users (show)

See Also:
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Sam Fowler 2018-02-06 00:15:01 EST

lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack).


External References:

https://github.com/TElgamal/attack-on-pycrypto-elgamal
https://github.com/Legrandin/pycryptodome/issues/90

Upstream Issue:

https://github.com/dlitz/pycrypto/issues/253

Comment 1 Sam Fowler 2018-02-06 00:15:49 EST

Created python-crypto tracking bugs for this issue:

Affects: epel-all [bug 1542315]
Affects: fedora-all [bug 1542314]

Comment 5 Joshua Padman 2018-02-08 22:54:13 EST

The Red Hat OpenStack packages that use functionality from the python-crypto libraries do not use the ElGamal functionality. Whilst the python-crypto code shipped is vulnerable, the vulnerable functionality is not used. Therefore, the Red Hat OpenStack python-crypto package will not be fixed at this stage.

Note You need to log in before you can comment on or make changes to this bug.

apevec
athmanem
bleanhar
bmcclain
btarraso
ccoleman
chrisw
cpelland
dajohnso
dblechte
dclarizi
dedgar
dmcphers
eedri
gblomqui
gmccullo
gtanzill
hhudgeon
jfrey
jgoulding
jhardy
jjoyce
jkeck
jpadman
jprause
jschluet
kbasil
lhh
lpeer
markmc
mburns
mgoldboi
michal.skrivanek
obarenbo
paul
python-maint
rbryant
rhos-maint
roliveri
sbonazzo
sclewis
sherold
simaishi
sisharma
slinaber
smohan
srevivo
ssaha
tdecacqu
vbellur
ykaul
ylavi
yozone