GHSA-4g76-w3xw-2x6w
Suggest an improvement- Source
- https://github.com/advisories/GHSA-4g76-w3xw-2x6w
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-4g76-w3xw-2x6w/GHSA-4g76-w3xw-2x6w.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-4g76-w3xw-2x6w
- Aliases
- Published
- 2023-03-14T18:03:22Z
- Modified
- 2023-11-08T04:12:06.889558Z
- Severity
-
- 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
- Summary
- Full authentication bypass if SASL authorization username is specified
- Details
-
Impact
maddy 0.2.0 - 0.6.2 allows a full authentication bypass if SASL authorization username is specified when using the PLAIN authentication mechanisms. Instead of validating the specified authorization username, it is accepted as is after checking the credentials for the authentication username.
Patches
maddy 0.6.3 includes the fix for the bug.
Workarounds
There is no way to fix the issue without upgrading.
References
- Commit that introduced the vulnerable code: https://github.com/foxcpp/maddy/commit/55a91a37b71210f34f98f4d327c30308fe24399a
- Fix: https://github.com/foxcpp/maddy/commit/9f58cb64b39cdc01928ec463bdb198c4c2313a9c
- References
-
- https://github.com/foxcpp/maddy/security/advisories/GHSA-4g76-w3xw-2x6w
- https://nvd.nist.gov/vuln/detail/CVE-2023-27582
- https://github.com/foxcpp/maddy/commit/55a91a37b71210f34f98f4d327c30308fe24399a
- https://github.com/foxcpp/maddy/commit/9f58cb64b39cdc01928ec463bdb198c4c2313a9c
- https://github.com/foxcpp/maddy
- https://github.com/foxcpp/maddy/releases/tag/v0.6.3
Affected packages
Go / github.com/foxcpp/maddy
Package
- Name
- github.com/foxcpp/maddy
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/foxcpp/maddy