Vulnerability Description
The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which makes it easier for remote attackers to forge RSA signatures or public certificates by leveraging a Bleichenbacher signature forgery attack.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Op-Tee | Op-Tee Os | <= 2.1.0 |
| Libtom | Libtomcrypt | <= 1.17 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1370955Issue TrackingPatch
- https://github.com/libtom/libtomcrypt/commit/5eb9743410ce4657e9d54fef26a2ee31a1bIssue TrackingPatchThird Party Advisory
- https://www.op-tee.org/advisories/Vendor Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1370955Issue TrackingPatch
- https://github.com/libtom/libtomcrypt/commit/5eb9743410ce4657e9d54fef26a2ee31a1bIssue TrackingPatchThird Party Advisory
- https://www.op-tee.org/advisories/Vendor Advisory
FAQ
What is CVE-2016-6129?
CVE-2016-6129 is a vulnerability with a CVSS score of 7.5 (HIGH). The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which makes it...
How severe is CVE-2016-6129?
CVE-2016-6129 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-6129?
Check the references section above for vendor advisories and patch information. Affected products include: Op-Tee Op-Tee Os, Libtom Libtomcrypt.