GHSA-vq4h-9ghm-qmrr

Source

https://github.com/advisories/GHSA-vq4h-9ghm-qmrr

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-vq4h-9ghm-qmrr/GHSA-vq4h-9ghm-qmrr.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-vq4h-9ghm-qmrr

Aliases

Related

Published

2023-03-30T03:30:38Z

Modified

2023-12-06T01:02:53.022479Z

Severity

4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

HashiCorp Vault's implementation of Shamir's secret sharing vulnerable to cache-timing attacks

Details

HashiCorp Vault's implementation of Shamir's secret sharing used precomputed table lookups, and was vulnerable to cache-timing attacks. An attacker with access to, and the ability to observe a large number of unseal operations on the host through a side channel may reduce the search space of a brute force effort to recover the Shamir shares. Fixed in Vault 1.13.1, 1.12.5, and 1.11.9.

Database specific

{
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-203",
        "CWE-208"
    ],
    "github_reviewed_at": "2023-04-07T19:23:01Z",
    "nvd_published_at": "2023-03-30T01:15:00Z",
    "severity": "MODERATE"
}

References

Affected packages

Go / github.com/hashicorp/vault

Package

Name: github.com/hashicorp/vault; View open source insights on deps.dev
Purl: pkg:golang/github.com/hashicorp/vault

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.11.9

Go / github.com/hashicorp/vault

Package

Name: github.com/hashicorp/vault; View open source insights on deps.dev
Purl: pkg:golang/github.com/hashicorp/vault

Affected ranges

Type: SEMVER
Events: Introduced

1.12.0

Fixed

1.12.5

Go / github.com/hashicorp/vault

Package

Name: github.com/hashicorp/vault; View open source insights on deps.dev
Purl: pkg:golang/github.com/hashicorp/vault

Affected ranges

Type: SEMVER
Events: Introduced

1.13.0

Fixed

1.13.1