N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-77hh-43cm-v8j6

EPSS Score

CWE

Published

2/16/2024

Updated

2/16/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-77hh-43cm-v8j6

GHSA-77hh-43cm-v8j6: tuf's Metadata API: Targets.get_delegated_role() is missing input validation

The security of both a TUF client and repository implementations depend on the concept of trusted Metadata objects verifying the signatures over other Metadata that it delegates to. This verification process uses Targets.get_delegated_role(delegated_role: str) to find the delegation information.

tuf.api.metadata.Targets.get_delegated_role() should ensure that the given delegated_rolename is actually a name of a role that is delegated by that Targets, but in the case of "succinct delegation" this does not happen.

tuf.ngclient users are not impacted but direct users of tuf.api.metadata could be impacted.

Impact

If an attacker can make a Metadata API user run Targets.get_delegated_role() so that

the Targets uses succinct delegation
the delegated_role argument is not actually delegated by the Targets

the result will be incorrect.

This also means that if an attacker can make a Metadata API user run Targets.verify_delegate() or Targets.get_verification_result() so that

the delegating Targets uses a succinct delegation
the delegated_role argument is the name of some unrelated Metadata
that other Metadata is correctly signed by the keys defined in the succinct delegation

the result would be a successful verification even though the Targets in question does not actually delegate to delegated_role.

The impact is estimated to be low for following reasons:

This cannot impact a TUF client that implements the client workflow as specified since the delegated role name is not an input but is collected from the (trusted) delegating Targets itself
Actual signature verification is not bypassed: The verified metadata must still be correctly signed by the keys specified in the delegating role.
The described situations are somewhat hypothetical: there does not seem to be any reason for a python-tuf user (whether client or a repository) to use tuf.api.metadata in this way.

All users of tuf.ngclient are specifically not impacted. Users of tuf.api.metadata could be impacted if they use succinct delegations in a way described above.

Patches

A fix is available in python-tuf 3.1.1 as commit 77cb66bc and in later releases as commit eb4834d9._

Workarounds

tuf.api.metadata users should only call Targets.get_delegated_role(), Targets.verify_delegate() or Targets.get_verification_result() with delegated_role argument that is known to be delegated by the Targets in question.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-77hh-43cm-v8j6

EPSS Score

CWE

Published

2/16/2024

Updated

2/16/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
tuf	pip	>= 2.0.0, < 3.1.1	3.1.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability description explicitly names tuf.api.metadata.Targets.get_delegated_role() as the primary function with missing input validation. The provided patches (both 77cb66bc and eb4834d9 show the same change) directly modify this function in tuf/api/metadata.py. The diff shows that a conditional check if succinct.is_delegated_role(delegated_role): was added. Before this change, if self.delegations.roles was None (indicating the use of succinct delegations, as self.delegations.succinct_roles would be used instead), the code would assign self.delegations.succinct_roles to role without verifying if the delegated_role string was actually a role defined within the succinct_roles object. This lack of validation is the core of the vulnerability. The description also mentions Targets.verify_delegate() and Targets.get_verification_result() as being impacted, likely because they use get_delegated_role() internally. However, the patch only directly modifies get_delegated_role(), so it's the most direct vulnerable function identifiable from the patch evidence.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** s**urity o* *ot* * TU* *li*nt *n* r*pository impl*m*nt*tions **p*n* on t** *on**pt o* trust** M*t***t* o*j**ts v*ri*yin* t** si*n*tur*s ov*r ot**r M*t***t* t**t it **l***t*s to. T*is v*ri*i**tion pro**ss us*s `T*r**ts.**t_**l***t**_rol*(**l***t**

Reasoning

T** vuln*r**ility **s*ription *xpli*itly n*m*s `tu*.*pi.m*t***t*.T*r**ts.**t_**l***t**_rol*()` *s t** prim*ry *un*tion wit* missin* input v*li**tion. T** provi*** p*t***s (*ot* ******** *n* ******** s*ow t** s*m* ***n**) *ir**tly mo*i*y t*is *un*tion

N/A

Basic Information

Concerned about an active attack path?

GHSA-77hh-43cm-v8j6: tuf's Metadata API: Targets.get_delegated_role() is missing input validation

Impact

Patches

Workarounds

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI