CVE-2023-0361

2023-02-1500:00:00

ubuntu.com

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

50.4%

JSON

A timing side-channel in the handling of RSA ClientKeyExchange messages was
discovered in GnuTLS. This side-channel can be sufficient to recover the
key encrypted in the RSA ciphertext across a network in a Bleichenbacher
style attack. To achieve a successful decryption the attacker would need to
send a large amount of specially crafted messages to the vulnerable server.
By recovering the secret from the ClientKeyExchange message, the attacker
would be able to decrypt the application data exchanged over that
connection.

Bugs

<https://gitlab.com/gnutls/gnutls/-/issues/1050>

Notes

Author	Note
mdeslaur	bionic already contains a sidechannel in RSA decryption because CVE-2018-16868 is not fixed due to it being too intrusive. We will ignore this CVE for bionic and earlier also.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchgnutls28< 3.6.13-2ubuntu1.8UNKNOWN
ubuntu22.04noarchgnutls28< 3.7.3-4ubuntu1.2UNKNOWN
ubuntu22.10noarchgnutls28< 3.7.7-2ubuntu2.1UNKNOWN
ubuntu23.04noarchgnutls28< 3.7.8-5ubuntu1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	gnutls28	< 3.6.13-2ubuntu1.8	UNKNOWN
ubuntu	22.04	noarch	gnutls28	< 3.7.3-4ubuntu1.2	UNKNOWN
ubuntu	22.10	noarch	gnutls28	< 3.7.7-2ubuntu2.1	UNKNOWN
ubuntu	23.04	noarch	gnutls28	< 3.7.8-5ubuntu1	UNKNOWN