N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-9344-p847-qm5c

EPSS Score

CWE

CWE-835

Published

6/26/2024

Updated

6/26/2024

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-9344-p847-qm5c

GHSA-9344-p847-qm5c:
Low severity (DoS) vulnerability in sequoia-openpgp

There is a denial-of-service vulnerability in sequoia-openpgp, our crate providing a low-level interface to our OpenPGP implementation. When triggered, the process will enter an infinite loop.

Many thanks to Andrew Gallagher for disclosing the issue to us.

Impact

Any software directly or indirectly using the interface sequoia_openpgp::cert::raw::RawCertParser. Notably, this includes all software using the sequoia_cert_store crate.

Details

The RawCertParser does not advance the input stream when encountering unsupported cert (primary key) versions, resulting in an infinite loop.

The fix introduces a new raw-cert-specific cert::raw::Error::UnuspportedCert.

Affected software

sequoia-openpgp 1.13.0
sequoia-openpgp 1.14.0
sequoia-openpgp 1.15.0
sequoia-openpgp 1.16.0
sequoia-openpgp 1.17.0
sequoia-openpgp 1.18.0
sequoia-openpgp 1.19.0
sequoia-openpgp 1.20.0
Any software built against a vulnerable version of sequoia-openpgp which is directly or indirectly using the interface sequoia_openpgp::cert::raw::RawCertParser. Notably, this includes all software using the sequoia_cert_store crate.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-9344-p847-qm5c

EPSS Score

CWE

CWE-835

Published

6/26/2024

Updated

6/26/2024

KEV Status

Technology

Rust

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
sequoia-openpgp	rust	>= 1.13.0, < 1.21.0	1.21.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The advisory explicitly identifies RawCertParser as the vulnerable component and describes an infinite loop condition during certificate parsing. The 'next' method in Rust iterators is typically responsible for advancing through elements. The described vulnerability pattern matches a faulty iterator implementation that doesn't properly consume input bytes when encountering errors, leading to reprocessing the same data. The introduction of a specific error type (cert::raw::Error::UnuspportedCert) in the fix suggests the loop logic was modified to handle this case and advance the stream appropriately.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T**r* is * **ni*l-o*-s*rvi** vuln*r**ility in s*quoi*-op*np*p, our *r*t* provi*in* * low-l*v*l int*r**** to our Op*nP*P impl*m*nt*tion. W**n tri***r**, t** pro**ss will *nt*r *n in*init* loop. M*ny t**nks to *n*r*w **ll****r *or *is*losin* t** issu*

Reasoning

T** **visory *xpli*itly i**nti*i*s `R*w**rtP*rs*r` *s t** vuln*r**l* *ompon*nt *n* **s*ri**s *n in*init* loop *on*ition *urin* **rti*i**t* p*rsin*. T** `'n*xt'` m*t*o* in `Rust` it*r*tors is typi**lly r*sponsi*l* *or **v*n*in* t*rou** *l*m*nts. T** *

N/A

Basic Information

Concerned about an active attack path?

GHSA-9344-p847-qm5c: Low severity (DoS) vulnerability in sequoia-openpgp

Impact

Details

Affected software

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

GHSA-9344-p847-qm5c:
Low severity (DoS) vulnerability in sequoia-openpgp

Vulnerability Intelligence
Miggo AI