GHSA-4g76-w3xw-2x6w

Source
https://github.com/advisories/GHSA-4g76-w3xw-2x6w
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-4g76-w3xw-2x6w/GHSA-4g76-w3xw-2x6w.json
Aliases
Published
2023-03-14T18:03:22Z
Modified
2023-11-08T04:12:06.889558Z
Details

Impact

maddy 0.2.0 - 0.6.2 allows a full authentication bypass if SASL authorization username is specified when using the PLAIN authentication mechanisms. Instead of validating the specified authorization username, it is accepted as is after checking the credentials for the authentication username.

Patches

maddy 0.6.3 includes the fix for the bug.

Workarounds

There is no way to fix the issue without upgrading.

References

  • Commit that introduced the vulnerable code: https://github.com/foxcpp/maddy/commit/55a91a37b71210f34f98f4d327c30308fe24399a
  • Fix: https://github.com/foxcpp/maddy/commit/9f58cb64b39cdc01928ec463bdb198c4c2313a9c
References

Affected packages

Go / github.com/foxcpp/maddy

Affected ranges

Type
SEMVER
Events
Introduced
0.2.0
Fixed
0.6.3