Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS03ZzlqLWc1amctM3Z2M84AA42k
Unauthenticated Nonce Increment in snow
Impact
There was a logic bug where unauthenticated payloads could still cause a nonce increment in snow's internal state. For an attacker with the ability to inject packets into the channel Noise is talking over, this allows a denial-of-service type attack which could prevent communication as it causes the sending and receiving side to be expecting different nonce values than would arrive.
Note that this only affects those who are using the stateful TransportState, not those using StatelessTransportState.
Patches
This has been patched in version 0.9.5, and all users are recommended to update.
References
There will be a more formal report of this in the near future.
Permalink: https://github.com/advisories/GHSA-7g9j-g5jg-3vv3JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03ZzlqLWc1amctM3Z2M84AA42k
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: 3 months ago
Updated: 3 months ago
Identifiers: GHSA-7g9j-g5jg-3vv3
References:
- https://github.com/mcginty/snow/security/advisories/GHSA-7g9j-g5jg-3vv3
- https://github.com/mcginty/snow/commit/12e8ae55547ae297d5f70599e5c884ea891303eb
- https://rustsec.org/advisories/RUSTSEC-2024-0011.html
- https://github.com/advisories/GHSA-7g9j-g5jg-3vv3
Blast Radius: 0.0
Affected Packages
cargo:snow
Dependent packages: 38Dependent repositories: 2,003
Downloads: 7,367,312 total
Affected Version Ranges: < 0.9.5
Fixed in: 0.9.5
All affected versions: 0.1.9, 0.1.10, 0.1.11, 0.1.12, 0.2.0, 0.2.1, 0.3.0, 0.3.1, 0.4.0, 0.4.1, 0.4.2, 0.5.0, 0.5.1, 0.5.2, 0.6.0, 0.6.1, 0.6.2, 0.7.0, 0.7.1, 0.7.2, 0.7.3, 0.8.0, 0.8.1, 0.9.0, 0.9.1, 0.9.2, 0.9.3, 0.9.4
All unaffected versions: 0.9.5, 0.9.6