CVE-2018-5382: Bouncy Castle BKS-V1 keystore files vulnerable to trivial hash collisions
First published: Tue Mar 20 2012(Updated: )
Bouncy Castle could allow a local attacker to obtain sensitive information, caused by an error in the BKS version 1 keystore files. By utilizing an HMAC that is only 16 bits long for the MAC key size, an attacker could exploit this vulnerability using brute-force techniques to crack a BKS-V1 keystore file in seconds and gain access to the keystore contents.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM GDE | <=3.0.0.2 | |
| Bouncycastle Legion-of-the-bouncy-castle-java-crytography-api | <=1.49 | |
| Redhat Satellite | =6.4 | |
| Redhat Satellite Capsule | =6.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://exchange.xforce.ibmcloud.com/vulnerabilities/140465
- https://www.ibm.com/support/pages/node/6320835 (Advisory)
- http://www.securityfocus.com/bid/103453
- https://access.redhat.com/errata/RHSA-2018:2927
- https://www.bouncycastle.org/releasenotes.html
- https://www.kb.cert.org/vuls/id/306792
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://insights.sei.cmu.edu/cert/2018/03/the-curious-case-of-the-bouncy-castle-bks-passwords.html
- https://access.redhat.com/security/updates/classification/
- https://access.redhat.com/support/policy/updates/jboss_notes
- https://bugzilla.redhat.com/show_bug.cgi?id=1563749
Frequently Asked Questions
What is CVE-2018-5382?
CVE-2018-5382 is a vulnerability in Bouncy Castle that could allow a local attacker to obtain sensitive information.
What is the severity of CVE-2018-5382?
The severity of CVE-2018-5382 is medium with a CVSS score of 4.4.
How can an attacker exploit CVE-2018-5382?
An attacker can exploit CVE-2018-5382 by compromising the integrity of a BKS keystore that uses a 16-bit HMAC.
How do I fix CVE-2018-5382?
To fix CVE-2018-5382, update Bouncy Castle to version 1.47 or later.
Where can I find more information about CVE-2018-5382?
More information about CVE-2018-5382 can be found at the following links: [link1](https://insights.sei.cmu.edu/cert/2018/03/the-curious-case-of-the-bouncy-castle-bks-passwords.html), [link2](https://www.kb.cert.org/vuls/id/306792), [link3](https://access.redhat.com/security/updates/classification/).
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- agent/severity
- agent/references
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-5382
- agent/software-canonical-lookup
- collector/ibm-support
- source/IBM
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/bouncycastle
- canonical/bouncycastle legion-of-the-bouncy-castle-java-crytography-api
- version/bouncycastle legion-of-the-bouncy-castle-java-crytography-api/1.49
- vendor/redhat
- canonical/redhat satellite
- version/redhat satellite/6.4
- canonical/redhat satellite capsule
- version/redhat satellite capsule/6.4
- package-manager/redhat
- vendor/ibm
- canonical/ibm gde
- version/ibm gde/3.0.0.2