N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-j57r-4qw6-58r3

EPSS Score

CWE

Published

11/7/2023

Updated

11/7/2023

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-j57r-4qw6-58r3

GHSA-j57r-4qw6-58r3: rusty_paseto vulnerable to private key extraction due to ed25519-dalek dependency

Impact

The vulnerability, known as RUSTSEC-2022-0093, impacts the ed25519-dalek crate, which is a dependency of the rusty-paseto crate. This issue arises from a "Double Public Key Signing Function Oracle Attack" affecting versions of ed25519-dalek prior to v2.0. These versions expose an unsafe API for serializing and deserializing 64-byte keypairs that include both private and public keys, creating potential for certain attacks. d25519-dalek users utilizing these serialization and deserialization functions directly could potentially be impacted.

Patches

The vulnerability within the ed25519-dalek crate has been addressed in version 2.0. rusty-paseto has addressed it in release v0.6.0.

Workarounds

Users are recommended to upgrade to v0.6.0 of rusty-paseto. However, users should still ensure that their key serialization and deserialization practices are secure and avoid any practices that could lead to key exposure.

References

More information about RUSTSEC-2022-0093 can be found in the RustSec Advisory Database. Updates and details regarding the upcoming release of rusty-paseto will be documented in the project's releases and changelog. This issue was first reported by Dependabot on 2023-08-15. The source was reviewed by @rrrodzilla at that time and a determination was made that the vulnerability low harm to existing users due to the strongly typed nature of keys provided by the rusty-paseto API. @techport-om reported the vulnerability to the repository by discovering during a cargo-audit run on 2023-11-05 and opened issue 28. This advisory was created at that time to notify existing users.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-j57r-4qw6-58r3

EPSS Score

CWE

Published

11/7/2023

Updated

11/7/2023

KEV Status

Technology

Rust

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
rusty-paseto	rust	<= 0.5.0	0.6.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from ed25519-dalek's pre-2.0 APIs for keypair serialization/deserialization. The commit diff shows replacements of Keypair/PublicKey usage with SigningKey/VerifyingKey from ed25519-dalek 2.0. The vulnerable functions are those handling cryptographic operations for V2/V4 public tokens, specifically where raw key bytes were processed using the old unsafe APIs. The high confidence comes from direct evidence in the diff showing migration from deprecated key handling methods to the safer 2.0 APIs.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

## Imp**t T** vuln*r**ility, known *s RUSTS**-****-****, imp**ts t** `*******-**l*k` *r*t*, w*i** is * **p*n**n*y o* t** `rusty-p*s*to` *r*t*. T*is issu* *ris*s *rom * "*ou*l* Pu*li* K*y Si*nin* *un*tion Or**l* *tt**k" *****tin* v*rsions o* `*******

Reasoning

T** vuln*r**ility st*ms *rom `*******-**l*k`'s pr*-*.* *PIs *or k*yp*ir s*ri*liz*tion/**s*ri*liz*tion. T** *ommit *i** s*ows r*pl***m*nts o* `K*yp*ir`/`Pu*li*K*y` us*** wit* `Si*nin*K*y`/`V*ri*yin*K*y` *rom `*******-**l*k` *.*. T** vuln*r**l* *un*tio

N/A

Basic Information

Concerned about an active attack path?

GHSA-j57r-4qw6-58r3: rusty_paseto vulnerable to private key extraction due to ed25519-dalek dependency

Impact

Patches

Workarounds

References

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI