CVE-2018-0495: Infoleak
First published: Wed Jun 13 2018(Updated: )
An implementation flaw was discovered in multiple cryptographic libraries that allows a side-channel based attacker to recover ECDSA or DSA private keys. When these cryptographic libraries use the private key to create a signature, such as for a TLS or SSH connection, they inadvertently leak information through memory caches. An unprivileged attacker running on the same machine can collect the information from a few thousand signatures and recover the value of the private key. External References: <a href="https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/">https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/</a>
Credit: security@debian.org security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/jbcs-httpd24-httpd | <0:2.4.29-40.jbcs.el6 | 0:2.4.29-40.jbcs.el6 |
| redhat/jbcs-httpd24-openssl | <1:1.0.2n-15.jbcs.el6 | 1:1.0.2n-15.jbcs.el6 |
| redhat/jbcs-httpd24-httpd | <0:2.4.29-40.jbcs.el7 | 0:2.4.29-40.jbcs.el7 |
| redhat/jbcs-httpd24-openssl | <1:1.0.2n-15.jbcs.el7 | 1:1.0.2n-15.jbcs.el7 |
| redhat/openssl | <1:1.0.2k-16.el7 | 1:1.0.2k-16.el7 |
| redhat/nspr | <0:4.21.0-1.el7 | 0:4.21.0-1.el7 |
| redhat/nss | <0:3.44.0-4.el7 | 0:3.44.0-4.el7 |
| redhat/nss-softokn | <0:3.44.0-5.el7 | 0:3.44.0-5.el7 |
| redhat/nss-util | <0:3.44.0-3.el7 | 0:3.44.0-3.el7 |
| redhat/nss-softokn | <0:3.28.3-9.el7_4 | 0:3.28.3-9.el7_4 |
| redhat/nss-softokn | <0:3.36.0-6.el7_5 | 0:3.36.0-6.el7_5 |
| redhat/nss-softokn | <0:3.36.0-6.el7_6 | 0:3.36.0-6.el7_6 |
| GnuPG Libgcrypt | <1.7.10 | |
| GnuPG Libgcrypt | >=1.8.0<1.8.3 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =17.10 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =18.10 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Redhat Ansible Tower | =3.3 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Oracle Traffic Director | =11.1.1.9.0 | |
| debian/libgcrypt20 | 1.8.7-6 1.10.1-3 1.11.0-6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2018-0495 https://nvd.nist.gov/vuln/detail/CVE-2018-0495 https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/
- https://bugzilla.redhat.com/show_bug.cgi?id=1591163
- https://access.redhat.com/errata/RHSA-2019:1297
- https://access.redhat.com/errata/RHBA-2020:0547
- https://access.redhat.com/errata/RHSA-2018:3221
- https://access.redhat.com/errata/RHSA-2019:2237
- https://access.redhat.com/errata/RHSA-2020:1345
- https://access.redhat.com/errata/RHSA-2020:1267
- https://access.redhat.com/errata/RHSA-2020:1461
- https://access.redhat.com/errata/RHSA-2019:1296
- https://access.redhat.com/errata/RHSA-2019:1543
- https://access.redhat.com/security/cve/CVE-2018-0495
- http://www.securitytracker.com/id/1041144
- http://www.securitytracker.com/id/1041147
- https://access.redhat.com/errata/RHSA-2018:3505
- https://dev.gnupg.org/T4011
- https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=9010d1576e278a4274ad3f4aa15776c28f6ba965
- https://lists.debian.org/debian-lts-announce/2018/06/msg00013.html
- https://lists.gnupg.org/pipermail/gnupg-announce/2018q2/000426.html
- https://usn.ubuntu.com/3689-1/
- https://usn.ubuntu.com/3689-2/
- https://usn.ubuntu.com/3692-1/
- https://usn.ubuntu.com/3692-2/
- https://usn.ubuntu.com/3850-1/
- https://usn.ubuntu.com/3850-2/
- https://www.debian.org/security/2018/dsa-4231
- https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
- https://launchpad.net/bugs/cve/CVE-2018-0495
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591169
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591172
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591166
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591165
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591174
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591179
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591178
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591176
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591175
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591167
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591168
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591164
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591170
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591904
- https://access.redhat.com/security/cve/CVE-2016-1000341
- https://github.com/gpg/libgcrypt/commit/9010d1576e278a4274ad3f4aa15776c28f6ba965
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.38_release_notes
- https://git.openssl.org/?p=openssl.git;a=commit;h=949ff36623eafc3523a9f91784992965018ffb05
- https://git.openssl.org/?p=openssl.git;a=commit;h=0c27d793745c7837b13646302b6890a556b7017a
- https://access.redhat.com/support/policy/updates/jboss_notes
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1591163#c0
- https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2018/june/its-back...understanding-the-return-of-the-hidden-number-problem/
- https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git%3Ba=commit%3Bh=9010d1576e278a4274ad3f4aa15776c28f6ba965
- https://security-tracker.debian.org/tracker/CVE-2018-0495
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495
- https://nvd.nist.gov/vuln/detail/CVE-2018-0495
- https://ubuntu.com/security/CVE-2018-0495
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- collector/nvd-index
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-0495
- agent/first-publish-date
- agent/type
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/weakness
- agent/description
- agent/severity
- agent/references
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- package-manager/redhat
- vendor/gnupg
- canonical/gnupg libgcrypt
- version/gnupg libgcrypt/1.8.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/17.10
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/18.10
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/redhat
- canonical/redhat ansible tower
- version/redhat ansible tower/3.3
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/7.0
- vendor/oracle
- canonical/oracle traffic director
- version/oracle traffic director/11.1.1.9.0
- package-manager/debian