openEuler 20.03 LTS update for nss



Published: 2020-11-10
Risk Low
Patch available YES
Number of vulnerabilities 3
CVE-ID CVE-2020-6829
CVE-2020-12400
CVE-2020-12401
CWE-ID CWE-310
CWE-327
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		openEuler
Operating systems & Components / Operating system

nss-debuginfo
Operating systems & Components / Operating system package or component

nss-help
Operating systems & Components / Operating system package or component

nss-debugsource
Operating systems & Components / Operating system package or component

nss-devel
Operating systems & Components / Operating system package or component

nss-util
Operating systems & Components / Operating system package or component

nss-softokn
Operating systems & Components / Operating system package or component

nss-util-devel
Operating systems & Components / Operating system package or component

nss-softokn-devel
Operating systems & Components / Operating system package or component

nss
Operating systems & Components / Operating system package or component

Vendor openEuler

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) Cryptographic issues

EUVDB-ID: #VU46019

Risk: Low

CVSSv3.1: 2.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-6829

CWE-ID: CWE-310 - Cryptographic Issues

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to usage of wNAF point multiplication algorithm when performing EC scalar point multiplication, which leaked partial information about the nonce used during signature generation. A remote attacker can perform an electro-magnetic side-channel attack and recover the private key.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS

nss-debuginfo: before 3.54.0-2

nss-help: before 3.54.0-2

nss-debugsource: before 3.54.0-2

nss-devel: before 3.54.0-2

nss-util: before 3.54.0-2

nss-softokn: before 3.54.0-2

nss-util-devel: before 3.54.0-2

nss-softokn-devel: before 3.54.0-2

nss: before 3.54.0-2

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2020-1094


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU45797

Risk: Low

CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-12400

CWE-ID: CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists in Mozilla NSS library in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS

nss-debuginfo: before 3.54.0-2

nss-help: before 3.54.0-2

nss-debugsource: before 3.54.0-2

nss-devel: before 3.54.0-2

nss-util: before 3.54.0-2

nss-softokn: before 3.54.0-2

nss-util-devel: before 3.54.0-2

nss-softokn-devel: before 3.54.0-2

nss: before 3.54.0-2

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2020-1094


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use of a broken or risky cryptographic algorithm

EUVDB-ID: #VU45798

Risk: Low

CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-12401

CWE-ID: CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to usage of ECDSA signatures. A local user can perform a side channel attack and gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS

nss-debuginfo: before 3.54.0-2

nss-help: before 3.54.0-2

nss-debugsource: before 3.54.0-2

nss-devel: before 3.54.0-2

nss-util: before 3.54.0-2

nss-softokn: before 3.54.0-2

nss-util-devel: before 3.54.0-2

nss-softokn-devel: before 3.54.0-2

nss: before 3.54.0-2

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2020-1094


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###