CVE-2018-10903Improper Input Validation in Python-cryptography

CWE-20Improper Input Validation10 documents8 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 56.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Cryptography Python-cryptographyCryptography.io CryptographyCanonical Ubuntu Linux+1 more
Timeline
PublishedJul 30
Latest updateJul 31

Description

A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. The finalize_with_tag API did not enforce a minimum tag length. If a user did not validate the input length prior to passing it to finalize_with_tag an attacker could craft an invalid payload with a shortened tag (e.g. 1 byte) such that they would have a 1 in 256 chance of passing the MAC check. GCM tag forgeries can cause key leakage.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

PyPIcryptography.io/cryptography1.9.02.3

Also affects: Ubuntu Linux 18.04

Patches

Patch: bugzilla.redhat.comPatch: github.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

4
OSV
PyCA Cryptography vulnerable to GCM tag forgery2018-07-31
GHSA
PyCA Cryptography vulnerable to GCM tag forgery2018-07-31
OSV
CVE-2018-10903: A flaw was found in python-cryptography versions between >=12018-07-30
CVEList
CVE-2018-10903: A flaw was found in python-cryptography versions between >=12018-07-30

📋Vendor Advisories

3
Ubuntu
python-cryptography vulnerability2018-07-23
Red Hat
python-cryptography: GCM tag forgery via truncated tag in finalize_with_tag API2018-07-18
Debian
CVE-2018-10903: python-cryptography - A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. The f...2018

💬Community

2
Bugzilla
CVE-2018-10903 python-cryptography: GCM tag forgery via truncated tag in finalize_with_tag API [openstack-rdo]2018-07-20
Bugzilla
CVE-2018-10903 python-cryptography: GCM tag forgery via truncated tag in finalize_with_tag API2018-07-18
CVE-2018-10903 — Improper Input Validation | cvebase