GHSA-9f3f-wv7r-qc8r

Suggest an improvement
Source
https://github.com/advisories/GHSA-9f3f-wv7r-qc8r
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-9f3f-wv7r-qc8r/GHSA-9f3f-wv7r-qc8r.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-9f3f-wv7r-qc8r
Aliases
Downstream
Related
Published
2026-02-11T15:13:12Z
Modified
2026-02-19T20:40:57.837957Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
Pion DTLS's usage of random nonce generation with AES GCM ciphers risks leaking the authentication key
Details

Impact

Pion DTLS versions v1.0.0 through v3.0.10 use random nonce generation with AES GCM ciphers, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonce in a session and a "forbidden attack".

Patches

Upgrade to v3.1.1 or later. This version includes PR #796, which uses the 64-bit sequence number to populate the nonce_explicit part of the GCM nonce. This is according to best practice outlined in RFC 9325 section 7.2.1.

v3.0.11 is a backport patch supporting Go v1.21

Workarounds

There are no workarounds without upgrading to version v3.0.11, v3.1.1 or later.

References

Commit fixing the bug: https://github.com/pion/dtls/commit/61762dee8217991882c5eb79856b9e7a73ee349f Commit fixing the bug (backport): 90e241c Pull request: #796

Database specific 
{
    "nvd_published_at": "2026-02-11T21:16:21Z",
    "github_reviewed_at": "2026-02-11T15:13:12Z",
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-200"
    ],
    "severity": "MODERATE"
}
References

Affected packages

Go / github.com/pion/dtls/v3

Package

Name
github.com/pion/dtls/v3
View open source insights on deps.dev
Purl
pkg:golang/github.com/pion/dtls/v3

Affected ranges

Type
SEMVER
Events
Introduced
3.1.0
Fixed
3.1.1

Affected versions

3.*
3.1.0

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-9f3f-wv7r-qc8r/GHSA-9f3f-wv7r-qc8r.json"

Go / github.com/pion/dtls/v2

Package

Name
github.com/pion/dtls/v2
View open source insights on deps.dev
Purl
pkg:golang/github.com/pion/dtls/v2

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
2.2.12

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-9f3f-wv7r-qc8r/GHSA-9f3f-wv7r-qc8r.json"

Go / github.com/pion/dtls

Package

Name
github.com/pion/dtls
View open source insights on deps.dev
Purl
pkg:golang/github.com/pion/dtls

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
1.5.4

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-9f3f-wv7r-qc8r/GHSA-9f3f-wv7r-qc8r.json"

Go / github.com/pion/dtls/v3

Package

Name
github.com/pion/dtls/v3
View open source insights on deps.dev
Purl
pkg:golang/github.com/pion/dtls/v3

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.11

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-9f3f-wv7r-qc8r/GHSA-9f3f-wv7r-qc8r.json"