456000 – <dev-libs/matrixssl-3.4.2: TLS CBC padding timing attack (CVE-2013-0169)

Bug 456000 - <dev-libs/matrixssl-3.4.2: TLS CBC padding timing attack (CVE-2013-0169)

Summary: <dev-libs/matrixssl-3.4.2: TLS CBC padding timing attack (CVE-2013-0169)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial
Assignee:	Gentoo Security

URL:	http://www.matrixssl.org/news.html
Whiteboard:	~3 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2013-02-07 12:21 UTC by Hanno Böck
Modified:	2013-12-09 07:34 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Hanno Böck gentoo-dev

2013-02-07 12:21:44 UTC

matrixssl suffers from the so-called Lucky Thirteen attack on AES CBC cipher modes. Version 3.4.1 fixes this, see upstream news.
No CVE yet, requested on oss-security.

Comment 1 GLSAMaker/CVETool Bot gentoo-dev

2013-03-04 21:55:04 UTC

CVE-2013-0169 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-0169):
  The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in
  OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider
  timing side-channel attacks on a MAC check requirement during the processing
  of malformed CBC padding, which allows remote attackers to conduct
  distinguishing attacks and plaintext-recovery attacks via statistical
  analysis of timing data for crafted packets, aka the "Lucky Thirteen" issue.

Comment 2 SpanKY gentoo-dev

2013-12-09 05:07:51 UTC

Note: there has not been a stable release of this package before.

Commit message: Version bump
http://sources.gentoo.org/dev-libs/matrixssl/matrixssl-3.4.2.ebuild?rev=1.1

Comment 3 Sergey Popov (RETIRED) gentoo-dev

2013-12-09 07:34:36 UTC

Thanks, guys.

Closing as noglsa.