Bugzilla – Bug 1208143
VUL-0: CVE-2023-0361: gnutls: Bleichenbacher attack against gnutls
Last modified: 2024-05-03 15:00:21 UTC
CVE-2023-0361 Hi! JFYI, GnuTLS just released version 3.7.9 and in the changelog they mention CVE-2023-0361: libgnutls: Fix a Bleichenbacher oracle in the TLS RSA key exchange: The time for GnuTLS to respond to malformed RSA ciphertexts in ClientKeyExchange depends on kind of error in the RSA padding. Generally, it looks like the response time depends on size of encrypted data in the PKCS#1 v1.5 encrypted data. I've run tests with 1 million connections per probe, on a 2.4GHz skylake CPU with 1024 bit RSA key, the two probes with most dissimilar results were "too long (49-byte) pre master secret" and "invalid MAC in Finished on pos 0", it takes the server an extra 58.5ns to respond one over the other. This is with a 95% confidence interval of +-6.8ns. https://gitlab.com/gnutls/gnutls/-/issues/1050 https://gitlab.com/gnutls/gnutls/-/merge_requests/1698
Factory submission: https://build.opensuse.org/request/show/1065924
The affected code was introduced in commit 4804febddc2ed958e5ae774de2a8f85edeeff538 in version 3.6.4. The list affected SLE codestreams is: * SLE-15-SP4_Update: 3.7.3 * SLE-15-SP2_Update: 3.6.7 * SLE-15_Update: 3.6.7
SUSE-SU-2023:0475-1: An update that solves one vulnerability and has two fixes can now be installed. Category: security (moderate) Bug References: 1207183, 1208143, 1208146 CVE References: CVE-2023-0361 Sources used: openSUSE Leap 15.4 (src): gnutls-3.7.3-150400.4.27.1 Basesystem Module 15-SP4 (src): gnutls-3.7.3-150400.4.27.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:0610-1: An update that solves one vulnerability can now be installed. Category: security (moderate) Bug References: 1208143 CVE References: CVE-2023-0361 Sources used: SUSE Linux Enterprise Real Time 15 SP3 (src): gnutls-3.6.7-150200.14.25.2 SUSE Linux Enterprise Micro 5.1 (src): gnutls-3.6.7-150200.14.25.2 SUSE Linux Enterprise Micro 5.2 (src): gnutls-3.6.7-150200.14.25.2 SUSE Linux Enterprise Micro for Rancher 5.2 (src): gnutls-3.6.7-150200.14.25.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:4952-1: An update that solves two vulnerabilities can now be installed. Category: security (moderate) Bug References: 1208143, 1217277 CVE References: CVE-2023-0361, CVE-2023-5981 Sources used: SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): gnutls-3.6.7-150000.6.50.1 SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): gnutls-3.6.7-150000.6.50.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): gnutls-3.6.7-150000.6.50.1 SUSE CaaS Platform 4.0 (src): gnutls-3.6.7-150000.6.50.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2024:1179-1: An update that solves four vulnerabilities, contains one feature and has eight security fixes can now be installed. Category: security (important) Bug References: 1202146, 1203299, 1203779, 1207183, 1207346, 1208143, 1208146, 1208237, 1209001, 1217277, 1218862, 1218865 CVE References: CVE-2023-0361, CVE-2023-5981, CVE-2024-0553, CVE-2024-0567 Jira References: PED-1562 Maintenance Incident: [SUSE:Maintenance:33235](https://smelt.suse.de/incident/33235/) Sources used: SUSE Linux Enterprise Micro for Rancher 5.3 (src): gnutls-3.7.3-150400.1.3.1 SUSE Linux Enterprise Micro 5.3 (src): gnutls-3.7.3-150400.1.3.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done, closing