Bug 2243644 (CVE-2023-5388) - CVE-2023-5388 nss: timing attack against RSA decryption
Summary: CVE-2023-5388 nss: timing attack against RSA decryption
Keywords:
Status: NEW
Alias: CVE-2023-5388
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2243660
Blocks: 2238675 2268120
TreeView+ depends on / blocked
 
Reported: 2023-10-12 11:32 UTC by Dhananjay Arunesh
Modified: 2024-03-25 20:13 UTC (History)
19 users (show)

Fixed In Version: firefox 115.9, thunderbird 115.9
Doc Type: If docs needed, set a value
Doc Text:
It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a Bleichenbacher or Manger like attack against all RSA decryption operations. As the leak happens before any padding operations, it affects all padding modes: PKCS#1 v1.5, OAEP, and RSASVP. Both API level calls and TLS server operation are affected.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2024:0093 0 None None None 2024-01-09 14:56:25 UTC
Red Hat Product Errata RHSA-2024:0105 0 None None None 2024-01-10 08:26:51 UTC
Red Hat Product Errata RHSA-2024:0106 0 None None None 2024-01-10 08:26:54 UTC
Red Hat Product Errata RHSA-2024:0107 0 None None None 2024-01-10 08:26:46 UTC
Red Hat Product Errata RHSA-2024:0108 0 None None None 2024-01-10 08:35:26 UTC
Red Hat Product Errata RHSA-2024:1483 0 None None None 2024-03-25 18:49:37 UTC
Red Hat Product Errata RHSA-2024:1484 0 None None None 2024-03-25 19:28:33 UTC
Red Hat Product Errata RHSA-2024:1485 0 None None None 2024-03-25 19:25:33 UTC
Red Hat Product Errata RHSA-2024:1486 0 None None None 2024-03-25 20:10:56 UTC
Red Hat Product Errata RHSA-2024:1487 0 None None None 2024-03-25 19:34:49 UTC
Red Hat Product Errata RHSA-2024:1488 0 None None None 2024-03-25 19:34:34 UTC
Red Hat Product Errata RHSA-2024:1489 0 None None None 2024-03-25 19:35:07 UTC
Red Hat Product Errata RHSA-2024:1490 0 None None None 2024-03-25 19:33:01 UTC
Red Hat Product Errata RHSA-2024:1491 0 None None None 2024-03-25 19:32:30 UTC
Red Hat Product Errata RHSA-2024:1492 0 None None None 2024-03-25 20:07:29 UTC
Red Hat Product Errata RHSA-2024:1493 0 None None None 2024-03-25 20:06:30 UTC
Red Hat Product Errata RHSA-2024:1494 0 None None None 2024-03-25 20:07:02 UTC
Red Hat Product Errata RHSA-2024:1495 0 None None None 2024-03-25 20:06:34 UTC
Red Hat Product Errata RHSA-2024:1496 0 None None None 2024-03-25 20:12:36 UTC
Red Hat Product Errata RHSA-2024:1497 0 None None None 2024-03-25 20:12:47 UTC
Red Hat Product Errata RHSA-2024:1498 0 None None None 2024-03-25 20:06:49 UTC
Red Hat Product Errata RHSA-2024:1499 0 None None None 2024-03-25 20:04:56 UTC
Red Hat Product Errata RHSA-2024:1500 0 None None None 2024-03-25 20:13:02 UTC

Description Dhananjay Arunesh 2023-10-12 11:32:48 UTC
It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a Bleichenbacher or Manger like attack against all RSA decryption operations. As the leak happens before any padding operations, it affects all padding modes: PKCS#1 v1.5, OAEP, and RSASVP. Both API level calls and TLS server operation are affected.

References:
https://people.redhat.com/~hkario/marvin/

Comment 2 Dhananjay Arunesh 2023-10-12 12:18:49 UTC
Created nss tracking bugs for this issue:

Affects: fedora-all [bug 2243660]

Comment 4 errata-xmlrpc 2024-01-09 14:56:23 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:0093 https://access.redhat.com/errata/RHSA-2024:0093

Comment 5 errata-xmlrpc 2024-01-10 08:26:44 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:0107 https://access.redhat.com/errata/RHSA-2024:0107

Comment 6 errata-xmlrpc 2024-01-10 08:26:49 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:0105 https://access.redhat.com/errata/RHSA-2024:0105

Comment 7 errata-xmlrpc 2024-01-10 08:26:53 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2024:0106 https://access.redhat.com/errata/RHSA-2024:0106

Comment 8 errata-xmlrpc 2024-01-10 08:35:25 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:0108 https://access.redhat.com/errata/RHSA-2024:0108

Comment 36 errata-xmlrpc 2024-03-25 18:49:35 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:1483 https://access.redhat.com/errata/RHSA-2024:1483

Comment 37 errata-xmlrpc 2024-03-25 19:25:31 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:1485 https://access.redhat.com/errata/RHSA-2024:1485

Comment 38 errata-xmlrpc 2024-03-25 19:28:31 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:1484 https://access.redhat.com/errata/RHSA-2024:1484

Comment 39 errata-xmlrpc 2024-03-25 19:32:28 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.4 Telecommunications Update Service

Via RHSA-2024:1491 https://access.redhat.com/errata/RHSA-2024:1491

Comment 40 errata-xmlrpc 2024-03-25 19:33:00 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support
  Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.2 Telecommunications Update Service

Via RHSA-2024:1490 https://access.redhat.com/errata/RHSA-2024:1490

Comment 41 errata-xmlrpc 2024-03-25 19:34:33 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:1488 https://access.redhat.com/errata/RHSA-2024:1488

Comment 42 errata-xmlrpc 2024-03-25 19:34:47 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2024:1487 https://access.redhat.com/errata/RHSA-2024:1487

Comment 43 errata-xmlrpc 2024-03-25 19:35:06 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2024:1489 https://access.redhat.com/errata/RHSA-2024:1489

Comment 44 errata-xmlrpc 2024-03-25 20:04:55 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.4 Telecommunications Update Service

Via RHSA-2024:1499 https://access.redhat.com/errata/RHSA-2024:1499

Comment 45 errata-xmlrpc 2024-03-25 20:06:29 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:1493 https://access.redhat.com/errata/RHSA-2024:1493

Comment 46 errata-xmlrpc 2024-03-25 20:06:33 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2024:1495 https://access.redhat.com/errata/RHSA-2024:1495

Comment 47 errata-xmlrpc 2024-03-25 20:06:48 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2024:1498 https://access.redhat.com/errata/RHSA-2024:1498

Comment 48 errata-xmlrpc 2024-03-25 20:07:01 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:1494 https://access.redhat.com/errata/RHSA-2024:1494

Comment 49 errata-xmlrpc 2024-03-25 20:07:27 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:1492 https://access.redhat.com/errata/RHSA-2024:1492

Comment 50 errata-xmlrpc 2024-03-25 20:10:54 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2024:1486 https://access.redhat.com/errata/RHSA-2024:1486

Comment 51 errata-xmlrpc 2024-03-25 20:12:34 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:1496 https://access.redhat.com/errata/RHSA-2024:1496

Comment 52 errata-xmlrpc 2024-03-25 20:12:45 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2024:1497 https://access.redhat.com/errata/RHSA-2024:1497

Comment 53 errata-xmlrpc 2024-03-25 20:13:01 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support
  Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.2 Telecommunications Update Service

Via RHSA-2024:1500 https://access.redhat.com/errata/RHSA-2024:1500


Note You need to log in before you can comment on or make changes to this bug.