Lucene search

GitHub Advisory DatabaseGHSA-HVH4-5QR6-3V7R

HistoryJun 05, 2024 - 4:56 p.m.

Observable Timing Discrepancy in pypqc

2024-06-0516:56:35

CWE-385

CWE-733

GitHub Advisory Database

github.com

observable timing discrepancy

pypqc

kyber512

kyber768

kyber1024

mac os

clang

cvss

exploit

pqclean

patch

workarounds

upgrade

pqshield

AI Score

Confidence

High

JSON

Impact

kyber512, kyber768, and kyber1024 on Mac OS (or when compiled with clang) only: An attacker able to submit many decapsulation requests against a single private key, and to gain timing information about the decapsulation, could recover the private key. Proof-of-concept exploit exists for a local attacker.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N/E:P/RL:U/RC:C

Patches

No patch is currently available / pending upstream PQClean#556.

Workarounds

No workarounds have been reported. The 0.0.7 -> 0.0.7.1 upgrade, when available, should be a drop-in replacement.

References

https://pqshield.com/pqshield-plugs-timing-leaks-in-kyber-ml-kem-to-improve-pqc-implementation-maturity/

https://github.com/antoonpurnal/clangover

https://www.github.com/PQClean/PQClean/issues/556

https://www.github.com/pq-crystals/kyber/commit/9b8d30698a3e7449aeb34e62339d4176f11e3c6c

Affected configurations

Vulners

Node

pypqcRange0.0.4–0.0.6.2

VendorProductVersionCPE
*pypqc*cpe:2.3:a:*:pypqc:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
*	pypqc	*	cpe:2.3:a::pypqc::::::::*

References

github.com/advisories/GHSA-hvh4-5qr6-3v7r

github.com/JamesTheAwesomeDude/pypqc/security/advisories/GHSA-hvh4-5qr6-3v7r

github.com/PQClean/PQClean/issues/556

AI Score

Confidence

High

JSON