2444248 – (CVE-2026-27932) CVE-2026-27932 joserfc: joserfc: Denial of Service via unbounded PBKDF2 iteration count in JWE decryption

Bug 2444248 (CVE-2026-27932) - CVE-2026-27932 joserfc: joserfc: Denial of Service via unbounded PBKDF2 iteration count in JWE decryption

Summary: CVE-2026-27932 joserfc: joserfc: Denial of Service via unbounded PBKDF2 itera...

Keywords:
Status:	NEW
Alias:	CVE-2026-27932
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-03 23:02 UTC by OSIDB Bzimport
Modified:	2026-03-04 04:55 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-03-03 23:02:45 UTC

joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption (JOSE) standards. In 1.6.2 and earlier, a resource exhaustion vulnerability in joserfc allows an unauthenticated attacker to cause a Denial of Service (DoS) via CPU exhaustion. When the library decrypts a JSON Web Encryption (JWE) token using Password-Based Encryption (PBES2) algorithms, it reads the p2c (PBES2 Count) parameter directly from the token's protected header. This parameter defines the number of iterations for the PBKDF2 key derivation function. Because joserfc does not validate or bound this value, an attacker can specify an extremely large iteration count (e.g., 2^31 - 1), forcing the server to expend massive CPU resources processing a single token. This vulnerability exists at the JWA layer and impacts all high-level JWE and JWT decryption interfaces if PBES2 algorithms are allowed by the application's policy.

Note You need to log in before you can comment on or make changes to this bug.