deps:chore - update module golang.org/x/crypto to v0.17.0 [SECURITY] - autoclosed #191
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
6b5459e to
53aa611
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
53aa611 to
0fc8d96
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
0fc8d96 to
f916323
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
f916323 to
f8fc301
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
f8fc301 to
9924ee5
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
9924ee5 to
b20b30f
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
b20b30f to
439eb0b
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
439eb0b to
1fb19cd
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
1fb19cd to
b6b1bc3
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
b6b1bc3 to
d0e88de
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
d0e88de to
aa639fd
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
aa639fd to
f63e1d9
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
f63e1d9 to
92fb520
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
92fb520 to
f098f74
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
f098f74 to
1bf4849
Compare
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
7b22f62 to
80a858a
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
80a858a to
31b9fb9
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
31b9fb9 to
21e8690
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
21e8690 to
8166ff9
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
8166ff9 to
92dd503
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
92dd503 to
4d80c3c
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
4d80c3c to
b680fdb
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
b680fdb to
cc21870
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
cc21870 to
5ac7835
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
5ac7835 to
e05777c
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
e05777c to
ca7fe80
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
ca7fe80 to
0b4b513
Compare
Signed-off-by: Renovate Bot <bot@renovateapp.com>
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/go-golang.org/x/crypto-vulnerability
branch
from
0b4b513 to
7dc0111
Compare
renovate
bot
changed the title
renovate
bot
changed the title
renovate
bot
deleted the
renovate/go-golang.org/x/crypto-vulnerability
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.0.0-20220214200702-86341886e292->v0.17.0GitHub Vulnerability Alerts
CVE-2022-27191
The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey.
CVE-2023-48795
Summary
Terrapin is a prefix truncation attack targeting the SSH protocol. More precisely, Terrapin breaks the integrity of SSH's secure channel. By carefully adjusting the sequence numbers during the handshake, an attacker can remove an arbitrary amount of messages sent by the client or server at the beginning of the secure channel without the client or server noticing it.
Mitigations
To mitigate this protocol vulnerability, OpenSSH suggested a so-called "strict kex" which alters the SSH handshake to ensure a Man-in-the-Middle attacker cannot introduce unauthenticated messages as well as convey sequence number manipulation across handshakes.
Warning: To take effect, both the client and server must support this countermeasure.
As a stop-gap measure, peers may also (temporarily) disable the affected algorithms and use unaffected alternatives like AES-GCM instead until patches are available.
Details
The SSH specifications of ChaCha20-Poly1305 (chacha20-poly1305@openssh.com) and Encrypt-then-MAC (*-etm@openssh.com MACs) are vulnerable against an arbitrary prefix truncation attack (a.k.a. Terrapin attack). This allows for an extension negotiation downgrade by stripping the SSH_MSG_EXT_INFO sent after the first message after SSH_MSG_NEWKEYS, downgrading security, and disabling attack countermeasures in some versions of OpenSSH. When targeting Encrypt-then-MAC, this attack requires the use of a CBC cipher to be practically exploitable due to the internal workings of the cipher mode. Additionally, this novel attack technique can be used to exploit previously unexploitable implementation flaws in a Man-in-the-Middle scenario.
The attack works by an attacker injecting an arbitrary number of SSH_MSG_IGNORE messages during the initial key exchange and consequently removing the same number of messages just after the initial key exchange has concluded. This is possible due to missing authentication of the excess SSH_MSG_IGNORE messages and the fact that the implicit sequence numbers used within the SSH protocol are only checked after the initial key exchange.
In the case of ChaCha20-Poly1305, the attack is guaranteed to work on every connection as this cipher does not maintain an internal state other than the message's sequence number. In the case of Encrypt-Then-MAC, practical exploitation requires the use of a CBC cipher; while theoretical integrity is broken for all ciphers when using this mode, message processing will fail at the application layer for CTR and stream ciphers.
For more details see https://terrapin-attack.com.
Impact
This attack targets the specification of ChaCha20-Poly1305 (chacha20-poly1305@openssh.com) and Encrypt-then-MAC (*-etm@openssh.com), which are widely adopted by well-known SSH implementations and can be considered de-facto standard. These algorithms can be practically exploited; however, in the case of Encrypt-Then-MAC, we additionally require the use of a CBC cipher. As a consequence, this attack works against all well-behaving SSH implementations supporting either of those algorithms and can be used to downgrade (but not fully strip) connection security in case SSH extension negotiation (RFC8308) is supported. The attack may also enable attackers to exploit certain implementation flaws in a man-in-the-middle (MitM) scenario.
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.