Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1563930 - (CVE-2018-9234) CVE-2018-9234 GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys
CVE-2018-9234 GnuPG: Unenforced configuration allows for apparently valid cer...
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
impact=low,public=20180319,reported=2...
: Security
Depends On: 1564367 1564368 1563931 1563932 1563933 1563934
Blocks: 1563936
  Show dependency treegraph
 
Reported: 2018-04-05 01:19 EDT by Sam Fowler
Modified: 2018-04-06 01:37 EDT (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Sam Fowler 2018-04-05 01:19:32 EDT 
GnuPG through version 2.2.5 does not enforce a configuration in which key certification requires an offline master Certify key, which results in apparently valid certifications that occurred only with access to a signing subkey.


Upstream Issue:

https://dev.gnupg.org/T3844


Upstream Patch:

https://dev.gnupg.org/rGa17d2d1f690ebe5d005b4589a5fe378b6487c657
Comment 1 Sam Fowler 2018-04-05 01:19:55 EDT 
Created gnupg2 tracking bugs for this issue:

Affects: fedora-all [bug 1563931]


Created gnupg tracking bugs for this issue:

Affects: fedora-all [bug 1563932]
Comment 3 Huzaifa S. Sidhpurwala 2018-04-06 00:03:20 EDT 
Analysis:

Normally master keys are more protected than signing or encryption subkeys. Since master key can actually be used to prove someone's identity. Subkeys on other hand can you used to sign/verify and encrypt/decrypt messages in place of the master keys. However the procedure of signing someones keys requires the master key. The flaw allows the signing subkey to sign someones keys, without the use of the master key, when smartcards are used. This seems to be only a minor security bypass, since technically subkeys also need to have some form of security around them.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.