CVE-2023-5388
First published: Thu Oct 12 2023(Updated: )
It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of the RSA decryption result are zero. This information can be used to mount a Bleichenbacher or Manger like attack against all RSA decryption operations. As the leak happens before any padding operations, it affects all padding modes: PKCS#1 v1.5, OAEP, and RSASVP. Both API level calls and TLS server operation are affected. References: <a href="https://people.redhat.com/~hkario/marvin/">https://people.redhat.com/~hkario/marvin/</a>
Credit: security@mozilla.org security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <124 | 124 |
| Mozilla Firefox ESR | <115.9 | 115.9 |
| Mozilla Thunderbird | <115.9 | 115.9 |
| redhat/firefox | <115.9 | 115.9 |
| redhat/thunderbird | <115.9 | 115.9 |
| ubuntu/firefox | <124.0+ | 124.0+ |
| ubuntu/nss | <2:3.98-0ubuntu0.20.04.1 | 2:3.98-0ubuntu0.20.04.1 |
| ubuntu/nss | <2:3.98-0ubuntu0.22.04.1 | 2:3.98-0ubuntu0.22.04.1 |
| ubuntu/nss | <2:3.98-0ubuntu0.23.10.1 | 2:3.98-0ubuntu0.23.10.1 |
| ubuntu/nss | <3.90.2<3.98 | 3.90.2 3.98 |
| ubuntu/thunderbird | <1:115.9.0+ | 1:115.9.0+ |
| ubuntu/thunderbird | <1:115.9.0+ | 1:115.9.0+ |
| ubuntu/thunderbird | <1:115.9.0+ | 1:115.9.0+ |
| debian/firefox | 126.0-1 | |
| debian/firefox-esr | <=91.12.0esr-1~deb10u1<=115.7.0esr-1~deb11u1<=115.7.0esr-1~deb12u1 | 115.11.0esr-1~deb10u1 115.11.0esr-1~deb11u1 115.11.0esr-1~deb12u1 115.10.0esr-1 115.11.0esr-1 |
| debian/nss | <=2:3.42.1-1+deb10u5<=2:3.61-1+deb11u3<=2:3.87.1-1 | 2:3.42.1-1+deb10u8 2:3.99-1 2:3.100-1 |
| debian/thunderbird | <=1:91.12.0-1~deb10u1<=1:115.7.0-1~deb11u1<=1:115.7.0-1~deb12u1 | 1:115.11.0-1~deb10u1 1:115.11.0-1~deb11u1 1:115.11.0-1~deb12u1 1:115.10.1-1 1:115.11.0-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.mozilla.org/show_bug.cgi?id=1780432
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-12/
- https://lists.debian.org/debian-lts-announce/2024/03/msg00022.html
- https://lists.debian.org/debian-lts-announce/2024/03/msg00028.html
- https://www.mozilla.org/security/advisories/mfsa2024-12/
- https://www.mozilla.org/security/advisories/mfsa2024-13/
- https://www.mozilla.org/security/advisories/mfsa2024-14/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/
- https://launchpad.net/bugs/cve/CVE-2023-5388
- https://people.redhat.com/~hkario/marvin/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2243660
- https://access.redhat.com/errata/RHSA-2024:0093
- https://access.redhat.com/errata/RHSA-2024:0107
- https://access.redhat.com/errata/RHSA-2024:0105
- https://access.redhat.com/errata/RHSA-2024:0106
- https://access.redhat.com/errata/RHSA-2024:0108
- https://access.redhat.com/errata/RHSA-2024:1483
- https://access.redhat.com/errata/RHSA-2024:1485
- https://access.redhat.com/errata/RHSA-2024:1484
- https://access.redhat.com/errata/RHSA-2024:1491
- https://access.redhat.com/errata/RHSA-2024:1490
- https://access.redhat.com/errata/RHSA-2024:1488
- https://access.redhat.com/errata/RHSA-2024:1487
- https://access.redhat.com/errata/RHSA-2024:1489
- https://access.redhat.com/errata/RHSA-2024:1499
- https://access.redhat.com/errata/RHSA-2024:1493
- https://access.redhat.com/errata/RHSA-2024:1495
- https://access.redhat.com/errata/RHSA-2024:1498
- https://access.redhat.com/errata/RHSA-2024:1494
- https://access.redhat.com/errata/RHSA-2024:1492
- https://access.redhat.com/errata/RHSA-2024:1486
- https://access.redhat.com/errata/RHSA-2024:1496
- https://access.redhat.com/errata/RHSA-2024:1497
- https://access.redhat.com/errata/RHSA-2024:1500
- https://bugzilla.redhat.com/show_bug.cgi?id=2243644
- https://git.rockylinux.org/staging/rpms/nss/-/commit/1f7f7523b61a2ada2f461548c4160fbbf979c5dd
- https://hg.mozilla.org/projects/nss/rev/196716d8377ab427e326f20bff2d026e90ac69e2
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-12/#CVE-2023-5388
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-13/#CVE-2023-5388
- https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/#CVE-2023-5388
- https://security-tracker.debian.org/tracker/CVE-2023-5388
- https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_98.html
- https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_90_2.html
- https://ubuntu.com/security/notices/USN-6703-1
- https://ubuntu.com/security/notices/USN-6717-1
- https://ubuntu.com/security/notices/USN-6727-1
- https://www.cve.org/CVERecord?id=CVE-2023-5388
- https://nvd.nist.gov/vuln/detail/CVE-2023-5388
- https://hg.mozilla.org/projects/nss/rev/b090a1e5dcdfc5772671063cfe9ebeadabd29ad3
- https://ubuntu.com/security/CVE-2023-5388
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- agent/first-publish-date
- agent/type
- agent/severity
- agent/author
- collector/mozilla-advisory
- source/Mozilla
- agent/software-canonical-lookup
- agent/remedy
- agent/description
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- collector/launchpad-cve
- source/Launchpad
- collector/nvd-cve
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-5388
- agent/last-modified-date
- agent/references
- agent/tags
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/mozilla
- canonical/mozilla firefox
- canonical/mozilla firefox esr
- canonical/mozilla thunderbird
- package-manager/redhat
- package-manager/debian
- package-manager/ubuntu