ID CVE-2009-1416
Summary lib/gnutls_pk.c in libgnutls in GnuTLS 2.5.0 through 2.6.5 generates RSA keys stored in DSA structures, instead of the intended DSA keys, which might allow remote attackers to spoof signatures on certificates or have unspecified other impact by leveraging an invalid DSA key.
References
Vulnerable Configurations
  • cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:*
    cpe:2.3:a:gnu:gnutls:2.6.5:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 10-06-2009 - 05:29)
Impact:
Exploitability:
CWE CWE-310
CAPEC
  • Signature Spoofing by Key Recreation
    An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 34783
gentoo GLSA-200905-04
mandriva MDVSA-2009:116
mlist
  • [gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416]
  • [help-gnutls] 20090420 Encryption using DSA keys
sectrack 1022158
secunia
  • 34842
  • 35211
vupen ADV-2009-1218
statements via4
contributor Tomas Hoger
lastmodified 2009-09-21
organization Red Hat
statement Not vulnerable. This issue did not affect versions of gnutls shipped in Red Hat Enterprise Linux 4 and 5 as it only affected gnutls 2.6.x versions.
Last major update 10-06-2009 - 05:29
Published 30-04-2009 - 20:30
Back to Top