CVE-2020-6829
First published: Tue Apr 21 2020(Updated: )
A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/nspr | <0:4.25.0-2.el7_9 | 0:4.25.0-2.el7_9 |
| redhat/nss | <0:3.53.1-3.el7_9 | 0:3.53.1-3.el7_9 |
| redhat/nss-softokn | <0:3.53.1-6.el7_9 | 0:3.53.1-6.el7_9 |
| redhat/nss-util | <0:3.53.1-1.el7_9 | 0:3.53.1-1.el7_9 |
| redhat/nss | <0:3.53.1-17.el8_3 | 0:3.53.1-17.el8_3 |
| Mozilla Firefox | <80.0 | |
| Mozilla Firefox | <80.0 | |
| All of | ||
| Mozilla Firefox | =80 | |
| Google Android | ||
| redhat/nss | <3.55 | 3.55 |
| Mozilla Firefox | <80 | 80 |
| IBM Cognos Analytics | <=12.0.0-12.0.3 | |
| IBM Cognos Analytics | <=11.2.0-11.2.4 FP4 |
Remedy
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-6829 https://nvd.nist.gov/vuln/detail/CVE-2020-6829 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.55_release_notes
- https://bugzilla.redhat.com/show_bug.cgi?id=1826187
- https://access.redhat.com/errata/RHSA-2020:4076
- https://access.redhat.com/errata/RHSA-2021:0538
- https://access.redhat.com/security/cve/CVE-2020-6829
- https://bugzilla.mozilla.org/show_bug.cgi?id=1631583
- https://lists.debian.org/debian-lts-announce/2023/02/msg00021.html
- https://www.mozilla.org/security/advisories/mfsa2020-36/
- https://www.mozilla.org/security/advisories/mfsa2020-39/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-39/
- https://access.redhat.com/security/cve/CVE-2020-12400
- https://hg.mozilla.org/projects/nss/rev/e55ab3145546ae3cf1333b43956a974675d2d25c
- https://hg.mozilla.org/projects/nss/rev/3f022d5eca5d3cd0e366a825a5681953d76299d0
- https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.55_release_notes
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1862359
- https://access.redhat.com/security/cve/cve-2020-6829
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-36/
- https://www.ibm.com/support/pages/node/7177223 (Advisory)
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2020-6829?
CVE-2020-6829 is a vulnerability found in nss, where it is possible to extract partial information about the ECDSA nonce during EC scalar point multiplication.
Which software products are affected by CVE-2020-6829?
Mozilla Firefox (version 80), Google Android, IBM Security Guardium (versions 10.5 to 11.4) are affected by CVE-2020-6829.
What is the severity of CVE-2020-6829?
CVE-2020-6829 has a severity rating of 5.3 (Medium).
How can I fix CVE-2020-6829?
To fix CVE-2020-6829, update to Mozilla Firefox 80, Google Android, or the latest version of IBM Security Guardium.
Where can I find more information about CVE-2020-6829?
You can find more information about CVE-2020-6829 in the following references: Mozilla Bugzilla, Mozilla Security Advisories, and Red Hat CVE link.
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- agent/remedy
- agent/weakness
- agent/author
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-6829
- agent/software-canonical-lookup
- source/Mozilla
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/ibm-support
- source/IBM
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/trending
- package-manager/redhat
- vendor/mozilla
- canonical/mozilla firefox
- version/mozilla firefox/80
- vendor/google
- canonical/google android
- vendor/ibm
- canonical/ibm cognos analytics
- version/ibm cognos analytics/12.0.0-12.0.3
- version/ibm cognos analytics/11.2.0-11.2.4 fp4