Lucene search
GoogleOSV:GHSA-2QP9-WG27-9PCVHistoryMay 13, 2022 - 1:30 a.m.
Nimbus JOSE+JWT missing overflow check
2022-05-1301:30:32
Google
osv.dev
6
0.002 Low
EPSS
Percentile
61.6%
In Nimbus JOSE+JWT before 4.39, there is no integer-overflow check when converting length values from bytes to bits, which allows attackers to conduct HMAC bypass attacks by shifting Additional Authenticated Data (AAD) and ciphertext so that different plaintext is obtained for the same HMAC.
References
bitbucket.org/connect2id/nimbus-jose-jwt/commits/0d2bd649ea386539220d4facfe1f65eb1dadb86c
bitbucket.org/connect2id/nimbus-jose-jwt/issues/224/byte-to-bit-overflow-in-cbc
bitbucket.org/connect2id/nimbus-jose-jwt/src/master/CHANGELOG.txt
lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe@%3Ccommits.druid.apache.org%3E
nvd.nist.gov/vuln/detail/CVE-2017-12972
Related
veracode
veracode
Authentication Bypass
2017-08-21 01:57:01
cve
cve
CVE-2017-12972
2017-08-20 16:29:00
osv
osv
CVE-2017-12972
2017-08-20 16:29:00
github
github
Nimbus JOSE+JWT missing overflow check
2022-05-13 01:30:32
prion
prion
Integer overflow
2017-08-20 16:29:00
nvd
nvd
CVE-2017-12972
2017-08-20 16:29:00
cvelist
cvelist
CVE-2017-12972
2017-08-20 16:00:00
