2450209 – (CVE-2026-4601) CVE-2026-4601 jsrsasign: jsrsasign: Private Key Recovery via Missing Cryptographic Step in DSA Signing

Bug 2450209 (CVE-2026-4601) - CVE-2026-4601 jsrsasign: jsrsasign: Private Key Recovery via Missing Cryptographic Step in DSA Signing

Summary: CVE-2026-4601 jsrsasign: jsrsasign: Private Key Recovery via Missing Cryptogr...

Keywords:
Status:	NEW
Alias:	CVE-2026-4601
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-23 06:02 UTC by OSIDB Bzimport
Modified:	2026-03-23 06:56 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-03-23 06:02:07 UTC

Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be zero, so the library emits an invalid signature without retrying, and then solves for x from the resulting signature.

Note You need to log in before you can comment on or make changes to this bug.