Candidate: CVE-2018-16868 PublicDate: 2018-12-03 14:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868 http://cat.eyalro.net/ Description: A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run process on the same physical core as the victim process, could use this to extract plaintext or in some cases downgrade any TLS connections to a vulnerable server. Ubuntu-Description: Notes: mdeslaur> Fixing this requires fixing CVE-2018-16869 in nettle first, but mdeslaur> nettle changes are too intrusive to backport to stable releases. mdeslaur> In addition, the upstream gnutls28 fix appears to break OpenPGP mdeslaur> support when backported to the version in bionic. Bugs: https://gitlab.com/gnutls/gnutls/issues/630 Priority: low Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N [5.6 MEDIUM] nvd: CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N [5.6 MEDIUM] Patches_gnutls26: upstream_gnutls26: needs-triage precise/esm_gnutls26: ignored (end of ESM support, was needs-triage) trusty_gnutls26: ignored (reached end-of-life) trusty/esm_gnutls26: needs-triage xenial_gnutls26: DNE bionic_gnutls26: DNE cosmic_gnutls26: DNE disco_gnutls26: DNE eoan_gnutls26: DNE focal_gnutls26: DNE groovy_gnutls26: DNE hirsute_gnutls26: DNE impish_gnutls26: DNE jammy_gnutls26: DNE devel_gnutls26: DNE Patches_gnutls28: upstream: https://gitlab.com/gnutls/gnutls/commit/4804febddc2ed958e5ae774de2a8f85edeeff538 (3.6) upstream: https://gitlab.com/gnutls/gnutls/commit/ed3bdddab73c792364deec423b2c2c498a939a64 (3.6) upstream_gnutls28: released (3.6.5-2) precise/esm_gnutls28: DNE trusty_gnutls28: ignored (reached end-of-life) trusty/esm_gnutls28: DNE (trusty was needed) xenial_gnutls28: ignored (end of standard support, was needed) esm-infra/xenial_gnutls28: needed bionic_gnutls28: needed cosmic_gnutls28: ignored (reached end-of-life) disco_gnutls28: released (3.6.5-2ubuntu1) eoan_gnutls28: released (3.6.5-2ubuntu1) focal_gnutls28: released (3.6.5-2ubuntu1) groovy_gnutls28: released (3.6.5-2ubuntu1) hirsute_gnutls28: released (3.6.5-2ubuntu1) impish_gnutls28: released (3.6.5-2ubuntu1) jammy_gnutls28: released (3.6.5-2ubuntu1) devel_gnutls28: released (3.6.5-2ubuntu1)