GHSA-7g9j-g5jg-3vv3

Source

https://github.com/advisories/GHSA-7g9j-g5jg-3vv3

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/01/GHSA-7g9j-g5jg-3vv3/GHSA-7g9j-g5jg-3vv3.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-7g9j-g5jg-3vv3

Aliases

RUSTSEC-2024-0011

Published

2024-01-24T20:53:48Z

Modified

2024-02-15T01:26:53.483409Z

Summary

Unauthenticated Nonce Increment in snow

Details

Impact

There was a logic bug where unauthenticated payloads could still cause a nonce increment in snow's internal state. For an attacker with the ability to inject packets into the channel Noise is talking over, this allows a denial-of-service type attack which could prevent communication as it causes the sending and receiving side to be expecting different nonce values than would arrive.

Note that this only affects those who are using the stateful TransportState, not those using StatelessTransportState.

Patches

This has been patched in version 0.9.5, and all users are recommended to update.

References

There will be a more formal report of this in the near future.

Database specific

{
    "nvd_published_at": null,
    "cwe_ids": [
        "CWE-440"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2024-01-24T20:53:48Z"
}

References

Affected packages

crates.io / snow

Package

Name: snow; View open source insights on deps.dev
Purl: pkg:cargo/snow

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.5