CVE-2018-5382 — MEDIUM (4.4)

Q: How severe is CVE-2018-5382?

CVE-2018-5382 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-5382?

Check the references section above for vendor advisories and patch information. Affected products include: Bouncycastle Bc-Java, Redhat Satellite, Redhat Satellite Capsule.

Vulnerability Description

The default BKS keystore use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS keystore. Bouncy Castle release 1.47 changes the BKS format to a format which uses a 160 bit HMAC instead. This applies to any BKS keystore generated prior to BC 1.47. For situations where people need to create the files for legacy reasons a specific keystore type "BKS-V1" was introduced in 1.49. It should be noted that the use of "BKS-V1" is discouraged by the library authors and should only be used where it is otherwise safe to do so, as in where the use of a 16 bit checksum for the file integrity check is not going to cause a security issue in itself.

CVSS Score

4.4

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Bouncycastle	Bc-Java	<= 1.49
Redhat	Satellite	6.4
Redhat	Satellite Capsule	6.4

Related Weaknesses (CWE)

CWE-354 CWE-327

References

http://www.securityfocus.com/bid/103453Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:2927Third Party Advisory
https://www.bouncycastle.org/releasenotes.htmlRelease NotesVendor Advisory
https://www.kb.cert.org/vuls/id/306792Third Party AdvisoryUS Government Resource
https://www.oracle.com/security-alerts/cpuoct2020.htmlThird Party Advisory
http://www.securityfocus.com/bid/103453Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:2927Third Party Advisory
https://www.bouncycastle.org/releasenotes.htmlRelease NotesVendor Advisory
https://www.kb.cert.org/vuls/id/306792Third Party AdvisoryUS Government Resource
https://www.oracle.com/security-alerts/cpuoct2020.htmlThird Party Advisory

FAQ

What is CVE-2018-5382?

CVE-2018-5382 is a vulnerability with a CVSS score of 4.4 (MEDIUM). The default BKS keystore use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS keystore. Bouncy Castle release 1.47 changes the BKS format to a format...

How severe is CVE-2018-5382?

CVE-2018-5382 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-5382?

Check the references section above for vendor advisories and patch information. Affected products include: Bouncycastle Bc-Java, Redhat Satellite, Redhat Satellite Capsule.