CVE-2023-1255

2023-04-2017:15:06

Google

osv.dev

cve-2023-1255

bug

decryption

64 bit

arm

crash

denial of service

disk encryption

low severity

software

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

39.5%

JSON

Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM
platform contains a bug that could cause it to read past the input buffer,
leading to a crash.

Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM
platform can crash in rare circumstances. The AES-XTS algorithm is usually
used for disk encryption.

The AES-XTS cipher decryption implementation for 64 bit ARM platform will read
past the end of the ciphertext buffer if the ciphertext size is 4 mod 5 in 16
byte blocks, e.g. 144 bytes or 1024 bytes. If the memory after the ciphertext
buffer is unmapped, this will trigger a crash which results in a denial of
service.

If an attacker can control the size and location of the ciphertext buffer
being decrypted by an application using AES-XTS on 64 bit ARM, the
application is affected. This is fairly unlikely making this issue
a Low severity one.

CPENameOperatorVersion
openssleq1.1.1-r3
openssleq3.0.0-r3
openssleq1.1.1d-r4
openssl3eq3.0.0-r3
openssleq3.1.0-r3
openssleq3.0.8-r0
openssleq3.0.3-r0
openssleq1.1.1-r0
openssleq3.0.1-r0
openssleqopenssl-3.0.4

Name	Operator	Version
openssl	eq	1.1.1-r3
openssl	eq	3.0.0-r3
openssl	eq	1.1.1d-r4
openssl3	eq	3.0.0-r3
openssl	eq	3.1.0-r3
openssl	eq	3.0.8-r0
openssl	eq	3.0.3-r0
openssl	eq	1.1.1-r0
openssl	eq	3.0.1-r0
openssl	eq	openssl-3.0.4