CVE-2015-7940: Infoleak
First published: Mon Nov 09 2015(Updated: )
Bouncy Castle could allow a remote attacker to obtain sensitive information. An attacker could exploit this vulnerability using an invalid curve attack to extract private keys used in elliptic curve cryptography and obtain sensitive information.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| openSUSE Leap | =42.1 | |
| openSUSE openSUSE | =13.1 | |
| openSUSE openSUSE | =13.2 | |
| Bouncycastle Bouncy Castle Crypto Package | <=1.50 | |
| Oracle Application Testing Suite | =12.5.0.1 | |
| Oracle Application Testing Suite | =12.5.0.2 | |
| Oracle Application Testing Suite | =12.5.0.3 | |
| Oracle Enterprise Manager Ops Center | =12.1.4 | |
| Oracle Enterprise Manager Ops Center | =12.2.2 | |
| Oracle PeopleSoft Enterprise PeopleTools | =8.54 | |
| Oracle PeopleSoft Enterprise PeopleTools | =8.55 | |
| Oracle Virtual Desktop Infrastructure | =3.5.2 | |
| debian/bouncycastle | 1.68-2 1.72-2 1.77-1 | |
| IBM GDE | <=3.0.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2015/10/22/7
- http://www.openwall.com/lists/oss-security/2015/10/22/9
- http://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html
- http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00012.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/79091
- http://www.debian.org/security/2015/dsa-3417
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174915.html
- http://www.securitytracker.com/id/1037036
- http://www.securitytracker.com/id/1037046
- http://www.securitytracker.com/id/1037053
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- http://rhn.redhat.com/errata/RHSA-2016-2035.html
- http://rhn.redhat.com/errata/RHSA-2016-2036.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
- http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
- https://usn.ubuntu.com/3727-1/
- https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://launchpad.net/bugs/cve/CVE-2015-7940
- https://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html
- https://github.com/bcgit/bc-java/commit/5cb2f05
- https://github.com/bcgit/bc-java/commit/e25e94a
- https://security-tracker.debian.org/tracker/CVE-2015-7940
- https://exchange.xforce.ibmcloud.com/vulnerabilities/107739
- https://www.ibm.com/support/pages/node/6320835 (Advisory)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7940
- https://nvd.nist.gov/vuln/detail/CVE-2015-7940
- https://ubuntu.com/security/CVE-2015-7940
Frequently Asked Questions
What is CVE-2015-7940?
CVE-2015-7940 is a vulnerability in the Bouncy Castle Java library that allows remote attackers to obtain sensitive information through an "invalid curve attack" in elliptic curve Diffie Hellman key exchanges.
How does CVE-2015-7940 affect Bouncy Castle?
CVE-2015-7940 affects versions of the Bouncy Castle library before 1.51, where a point is not validated within the elliptic curve, making it easier for attackers to obtain private keys.
What is the severity of CVE-2015-7940?
CVE-2015-7940 has a severity rating of 5.3 (medium).
How can I fix CVE-2015-7940 in Bouncy Castle?
To fix CVE-2015-7940, update Bouncy Castle to version 1.51 or higher.
Where can I find more information about CVE-2015-7940?
You can find more information about CVE-2015-7940 at the following references: [CVE-2015-7940 on MITRE](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7940), [Web-in-Security Blog](https://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html), [Ubuntu Security Notice USN-3727-1](https://ubuntu.com/security/notices/USN-3727-1).
- agent/type
- agent/remedy
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/description
- agent/severity
- agent/weakness
- agent/references
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/ibm-support
- source/IBM
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/tags
- collector/usn-cve
- source/Ubuntu
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/42.1
- canonical/opensuse opensuse
- version/opensuse opensuse/13.1
- version/opensuse opensuse/13.2
- vendor/bouncycastle
- canonical/bouncycastle bouncy castle crypto package
- version/bouncycastle bouncy castle crypto package/1.50
- vendor/oracle
- canonical/oracle application testing suite
- version/oracle application testing suite/12.5.0.1
- version/oracle application testing suite/12.5.0.2
- version/oracle application testing suite/12.5.0.3
- canonical/oracle enterprise manager ops center
- version/oracle enterprise manager ops center/12.1.4
- version/oracle enterprise manager ops center/12.2.2
- canonical/oracle peoplesoft enterprise peopletools
- version/oracle peoplesoft enterprise peopletools/8.54
- version/oracle peoplesoft enterprise peopletools/8.55
- canonical/oracle virtual desktop infrastructure
- version/oracle virtual desktop infrastructure/3.5.2
- package-manager/debian
- vendor/ibm
- canonical/ibm gde
- version/ibm gde/3.0.0.2