Vulnerability Description
The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents can lead to a cross-configuration attack against OpenPGP.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Botan Project | Botan | <= 2.18.1 |
| Fedoraproject | Fedora | 34 |
| Mozilla | Thunderbird | < 91.12.0 |
Related Weaknesses (CWE)
References
- https://eprint.iacr.org/2021/923Technical DescriptionThird Party Advisory
- https://github.com/randombit/botan/pull/2790PatchThird Party Advisory
- https://ibm.github.io/system-security-research-updates/2021/07/20/insecurity-elgThird Party Advisory
- https://ibm.github.io/system-security-research-updates/2021/09/06/insecurity-elgExploitThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202208-14Third Party Advisory
- https://eprint.iacr.org/2021/923Technical DescriptionThird Party Advisory
- https://github.com/randombit/botan/pull/2790PatchThird Party Advisory
- https://ibm.github.io/system-security-research-updates/2021/07/20/insecurity-elgThird Party Advisory
- https://ibm.github.io/system-security-research-updates/2021/09/06/insecurity-elgExploitThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202208-14Third Party Advisory
FAQ
What is CVE-2021-40529?
CVE-2021-40529 is a vulnerability with a CVSS score of 5.9 (MEDIUM). The ElGamal implementation in Botan through 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dang...
How severe is CVE-2021-40529?
CVE-2021-40529 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-40529?
Check the references section above for vendor advisories and patch information. Affected products include: Botan Project Botan, Fedoraproject Fedora, Mozilla Thunderbird.