Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 4 articles for you...
198
security advisoryhigh severitysoftware updateArch Linux: 202101-7 High: Mbedtls Private Key Recovery
The package mbedtls before version 2.25.0-1 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-202101-7 ======================================== Severity: High Date : 2021-01-08 CVE-ID : CVE-2020-16150 Package : mbedtls Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-1386 Summary ====== The package mbedtls before version 2.25.0-1 is vulnerable to private key recovery. Resolution ========= Upgrade to 2.25.0-1. # pacman -Syu "mbedtls> =2.25.0-1" The problem has been fixed upstream in version 2.25.0. Workaround ========= None. Description ========== A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode because of a computed time difference based on a padding length. The issue is fixed in Mbed TLS 2.24.0, 2.16.8 and 2.7.17. Impact ===== An attacker might be able to recover secret key information via a side- channel. References ========= https://bugs.archlinux.org/task/69128 https://security.archlinux.org/CVE-2020-16150 . Arch Linux Security Advisory issues urgent notice about critical vulnerability in mbedtls that could lead to private key exposure. Users are urged to update for enhanced security.. Arch Linux, Mbedtls, High Severity, Security Advisory. . LinuxSecurity.com Team
Jan 10, 2021
ArchLinux
198
security advisorysoftware updatemedium severityArch Linux Advisory: 202011-17 Medium Risk for Rclone Key Recovery
The package rclone before version 1.53.3-1 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-202011-17 ========================================= Severity: Medium Date : 2020-11-19 CVE-ID : CVE-2020-28924 Package : rclone Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-1286 Summary ====== The package rclone before version 1.53.3-1 is vulnerable to private key recovery. Resolution ========= Upgrade to 1.53.3-1. # pacman -Syu "rclone> =1.53.3-1" The problem has been fixed upstream in version 1.53.3. Workaround ========= All passwords generated by rclone 1.49.0 up to 1.53.2 should be changed. Rclone provides a password checker to find weak passwords as a separate tool called passwordcheck. Description ========== An issue was discovered in rclone 1.49.0 up to 1.53.2. Due to the use of a weak random number generator, the password generator has been producing weak passwords with much less entropy than advertised. The suggested passwords depend deterministically on the time rclone was started. This limits the entropy of the passwords enormously. These passwords are often used in the crypt backend for encryption of data. It would be possible to make a dictionary of all possible passwords with about 38 million entries per password length. This would make decryption of secret material possible with a plausible amount of effort. NOTE: all passwords generated by affected versions should be changed. Impact ===== A malicious user might be able to brute force the weak passwords. References ========= https://github.com/rclone/rclone/issues/4783 https://github.com/rclone/rclone/commit/7985df37681f54d013816a4641da4f9b085b3aa5 https://github.com/rclone/passwordcheck https://security.archlinux.org/CVE-2020-28924 . Enhance your Arch Linux security by updating rclone to resolve a medium severity vulnerability linked to private key exposure in previous versions. Use this command to check for updates:. Arch Linux, Rclone Update, Key Recovery Risk, PrivateKey Recovery. . Severity: Medium. LinuxSecurity.com Team
Nov 29, 2020
•Medium
ArchLinux
198
security advisorydenial of servicearbitrary code executionArchLinux: 202006-4 Critical: Firefox Multiple Vulnerabilities Update
The package thunderbird before version 68.9.0-1 is vulnerable to multiple issues including arbitrary code execution, denial of service, man-in-the-middle and private key recovery. . Arch Linux Security Advisory ASA-202006-4 ======================================== Severity: High Date : 2020-06-06 CVE-ID : CVE-2020-12398 CVE-2020-12399 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 Package : thunderbird Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1179 Summary ====== The package thunderbird before version 68.9.0-1 is vulnerable to multiple issues including arbitrary code execution, denial of service, man-in-the-middle and private key recovery. Resolution ========= Upgrade to 68.9.0-1. # pacman -Syu "thunderbird> =68.9.0-1" The problems have been fixed upstream in version 68.9.0. Workaround ========= None. Description ========== - CVE-2020-12398 (man-in-the-middle) A security downgrade issue has been found in Thunderbird before 68.9.0. If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent without protection. - CVE-2020-12399 (private key recovery) NSS before 3.52.1, as used in Firefox before 77.0 and Thunderbird before 68.9.0, has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys. - CVE-2020-12405 (denial of service) When browsing a malicious page in Firefox before 77.0 and Thunderbird before 68.9.0, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. - CVE-2020-12406 (arbitrary code execution) Mozilla Developer Iain Ireland discovered a missing type check in Firefox before 77.0 and Thunderbird before 68.9.0 during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. - CVE-2020-12410 (arbitrary codeexecution) Mozilla developers Tom Tung and Karl Tomlinson reported memory safety bugs present in Firefox 76, Firefox ESR 68.8 and Thunderbird before 68.9.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with enough effort some of these could have been exploited to run arbitrary code. Impact ===== A remote attacker might be able to recover private keys, downgrade an encrypted connection, execute arbitrary code or crash the application. References ========= https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/ https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/#CVE-2020-12398 https://bugzilla.mozilla.org/show_bug.cgi?id=1613623 https://www.mozilla.org/en-US/security/advisories/mfsa2020-20/ https://bugzilla.mozilla.org/show_bug.cgi?id=1631576 https://bugzilla.mozilla.org/show_bug.cgi?id=1631618 https://bugzilla.mozilla.org/show_bug.cgi?id=1639590 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1619305%2C1632717 https://security.archlinux.org/CVE-2020-12398 https://security.archlinux.org/CVE-2020-12399 https://security.archlinux.org/CVE-2020-12405 https://security.archlinux.org/CVE-2020-12406 https://security.archlinux.org/CVE-2020-12410 . ArchLinux Security Notice: Immediate measures required regarding various vulnerabilities in ThunderBird to safeguard users from potential attacks.. Thunderbird Security Issues, Arch Linux Update, Remote Exploitation, High Severity Advisory. . LinuxSecurity.com Team
Jun 09, 2020
ArchLinux
198
security advisoryhigh severitysecurity issueArch Linux: 201912-3 High: Crypto++ Private Key Recovery Advisory
The package crypto++ before version 8.2.0-2 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-201912-3 ======================================== Severity: High Date : 2019-12-06 CVE-ID : CVE-2019-14318 Package : crypto++ Type : private key recovery Remote : Yes Link : https://security.archlinux.org/AVG-1046 Summary ====== The package crypto++ before version 8.2.0-2 is vulnerable to private key recovery. Resolution ========= Upgrade to 8.2.0-2. # pacman -Syu "crypto++> =8.2.0-2" The problem has been fixed upstream but no release is available yet. Workaround ========= None. Description ========== A vulnerability has been found in the ECDSA/EdDSA implementation of crypto++ up to 8.2.0, allowing for practical recovery of the long-term private key. Impact ===== An attacker might be able to recover long-term private key by measuring the duration of hundreds to thousands of signing operations of known messages. References ========= https://seclists.org/oss-sec/2019/q4/3 https://minerva.crocs.fi.muni.cz/ https://github.com/weidai11/cryptopp/issues/869 https://github.com/weidai11/cryptopp/pull/870/commits/80c59bcdb251043f27eef95a4f31224c4615c3ec https://github.com/weidai11/cryptopp/commit/c9ef9420e762 https://security.archlinux.org/CVE-2019-14318 . Arch Linux Advisory ASA-202310-7 warns about a critical exposure in the openssl library affecting secure key management.. private Key Recovery, crypto++ Vulnerability, Arch Linux Security, High Severity Advisory. . LinuxSecurity.com Team
Dec 11, 2019
ArchLinux
198
security advisorydenial of serviceinformation disclosureArch Linux Security Advisory ASA-201911-14 High: intel-ucode Issues
The package intel-ucode before version 20191112-1 is vulnerable to multiple issues including information disclosure, private key recovery and denial of service. . Arch Linux Security Advisory ASA-201911-14 ========================================= Severity: High Date : 2019-11-13 CVE-ID : CVE-2019-0117 CVE-2019-11135 CVE-2019-11139 Package : intel-ucode Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-1068 Summary ====== The package intel-ucode before version 20191112-1 is vulnerable to multiple issues including information disclosure, private key recovery and denial of service. Resolution ========= Upgrade to 20191112-1. # pacman -Syu "intel-ucode> =20191112-1" The problems have been fixed upstream in version 20191112. Workaround ========= None. Description ========== - CVE-2019-0117 (information disclosure) A flaw was found in the implementation of SGX around the access control of protected memory. A local attacker of a system with SGX enabled and an affected intel GPU with the ability to execute code is able to infer the contents of the SGX protected memory. - CVE-2019-11135 (private key recovery) A flaw was found in the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occurs. A local authenticated attacker with the ability to monitor execution times could infer the TSX memory state by comparing abort execution times. This could allow information disclosure via this observed side-channel for any TSX transaction being executed while an attacker is able to observe abort timing. Intel's Transactional Synchronisation Extensions (TSX) are set of instructions which enable transactional memory support to improve performance of the multi-threaded applications, in the lock-protected critical sections. The CPU executes instructions in the critical-sections as transactions, while ensuring their atomic state. When such transaction execution is unsuccessful, theprocessor cannot ensure atomic updates to the transaction memory, so the processor rolls back or aborts such transaction execution. While TSX Asynchronous Abort (TAA) is pending, CPU may continue to read data from architectural buffers and pass it to the dependent speculative operations. This may cause information leakage via speculative side-channel means, which is quite similar to the Microarchitectural Data Sampling (MDS) issue. This mitigation is only effective using one the follow linux kernels: v3.16.77, v4.4.202, v4.9.202, v4.14.154, v4.19.84 or v5.3.11. - CVE-2019-11139 (denial of service) It was discovered that certain Intel Xeon processors did not properly restrict access to a voltage modulation interface. A local privileged attacker could use this to cause a denial of service (system crash). Impact ===== A local unprivileged attacker with access to an affected GPU can read protected memory on an SGX enclave. Further, an attacker can infer the contents of TPM keys using side-channel attacks. Finally, an attacker can crash the system by accessing the voltage modulator interface on certain Xeon processors. References ========= https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00219.html https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/overview.html https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00271.html https://security.archlinux.org/CVE-2019-0117 https://security.archlinux.org/CVE-2019-11135 https://security.archlinux.org/CVE-2019-11139 . Arch Linux Security Notice ASA-202310-45 highlights urgent vulnerabilities in intel-ucode that require prompt action.. intel-ucode, security advisory, privacy flaws, denial service. . LinuxSecurity.com Team
Dec 03, 2019
ArchLinux
198
security advisoryhigh severityarch linuxArch Linux: ASA-201901-12 High: Matrix-Synapse Key Recovery
The package matrix-synapse before version 0.34.1.1-1 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-201901-12 ========================================= Severity: High Date : 2019-01-24 CVE-ID : CVE-2019-5885 Package : matrix-synapse Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-846 Summary ====== The package matrix-synapse before version 0.34.1.1-1 is vulnerable to private key recovery. Resolution ========= Upgrade to 0.34.1.1-1. # pacman -Syu "matrix-synapse> =0.34.1.1-1" The problem has been fixed upstream in version 0.34.1.1. Workaround ========= None. Description ========== matrix-synapse before 0.34.1 is vulnerable to private key recovery as synapse will attempt to derive a secret key from other secrets specified in the configuration file for "macaroon_secret_key". However, in all versions of Synapse up to and including 0.34.0, this process was faulty and a predictable value was used instead. Impact ===== If no private key is specified a predictable key is used allowing private key recover. References ========= https://matrix.org/blog/2019/01/15/further-details-on-critical-security-update-in-synapse-affecting-all-versions-prior-to-0-34-1-cve-2019-5885/ https://security.archlinux.org/CVE-2019-5885 . Arch Linux Advisory ASA-202210-15 highlights a critical vulnerability in synapse-archive involving unauthorized data exposure.. arch linux, matrix-synapse, security advisory, key recovery, package update. . LinuxSecurity.com Team
Jan 27, 2019
ArchLinux
198
security advisorylow severityArch LinuxArch Linux Advisory ASA-201812-8 Low Severity: OpenSSL Private Key Threat
The package openssl-1.0 before version 1.0.2.q-1 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-201812-8 ======================================== Severity: Low Date : 2018-12-08 CVE-ID : CVE-2018-0734 CVE-2018-5407 Package : openssl-1.0 Type : private key recovery Remote : Yes Link : https://security.archlinux.org/AVG-807 Summary ====== The package openssl-1.0 before version 1.0.2.q-1 is vulnerable to private key recovery. Resolution ========= Upgrade to 1.0.2.q-1. # pacman -Syu "openssl-1.0> =1.0.2.q-1" The problems have been fixed upstream in version 1.0.2.q. Workaround ========= None. Description ========== - CVE-2018-0734 (private key recovery) A timing vulnerability has been found in DSA signature generation in openssl versions up to and including 1.1.1, where information is leaked via a side channel when a BN is resized and could lead to private key recovery. - CVE-2018-5407 (private key recovery) A vulnerability has been found in the ECC scalar multiplication implementation of OpenSSL < 1.1.0i and
Dec 11, 2018
•Low
ArchLinux
198
security advisorylow severityArch LinuxArch Linux: 201812-7 Low: Lib32-OpenSSL Private Key Recovery Advisory
The package lib32-openssl-1.0 before version 1.0.2.q-1 is vulnerable to private key recovery. . Arch Linux Security Advisory ASA-201812-7 ======================================== Severity: Low Date : 2018-12-08 CVE-ID : CVE-2018-0734 CVE-2018-5407 Package : lib32-openssl-1.0 Type : private key recovery Remote : Yes Link : https://security.archlinux.org/AVG-806 Summary ====== The package lib32-openssl-1.0 before version 1.0.2.q-1 is vulnerable to private key recovery. Resolution ========= Upgrade to 1.0.2.q-1. # pacman -Syu "lib32-openssl-1.0> =1.0.2.q-1" The problems have been fixed upstream in version 1.0.2.q. Workaround ========= None. Description ========== - CVE-2018-0734 (private key recovery) A timing vulnerability has been found in DSA signature generation in openssl versions up to and including 1.1.1, where information is leaked via a side channel when a BN is resized and could lead to private key recovery. - CVE-2018-5407 (private key recovery) A vulnerability has been found in the ECC scalar multiplication implementation of OpenSSL < 1.1.0i and
Dec 11, 2018
•Low
ArchLinux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!