Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1qOGNtLWc3cjYtaGZwcc4AA9-3
vodozemac's usage of non-constant time base64 decoder could lead to leakage of secret key material
Versions before 0.7.0 of vodozemac use a non-constant time base64 implementation for importing key material for Megolm group sessions and PkDecryption Ed25519 secret keys. This flaw might allow an attacker to infer some information about the secret key material through a side-channel attack.
Impact
The use of a non-constant time base64 implementation might allow an attacker to observe timing variations in the encoding and decoding operations of the secret key material. This could potentially provide insights into the underlying secret key material.
The impact of this vulnerability is considered low because exploiting the attacker is required to have access to high precision timing measurements, as well as repeated access to the base64 encoding or decoding processes. Additionally, the estimated leakage amount is bounded and low according to the referenced paper.
Patches
The patch is in commit 734b6c6948d4b2bdee3dd8b4efa591d93a61d272.
Workarounds
None.
References
A detailed description of the precise attack can be found at https://arxiv.org/abs/2108.04600. We kindly thank Soatok for pointing out this research to us.
For more information
If you have any questions or comments about this advisory please email us at security at matrix.org.
Permalink: https://github.com/advisories/GHSA-j8cm-g7r6-hfpqJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1qOGNtLWc3cjYtaGZwcc4AA9-3
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: 6 months ago
Updated: about 2 months ago
CVSS Score: 3.7
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Percentage: 0.00045
EPSS Percentile: 0.17541
Identifiers: GHSA-j8cm-g7r6-hfpq, CVE-2024-40640
References:
- https://github.com/matrix-org/vodozemac/security/advisories/GHSA-j8cm-g7r6-hfpq
- https://github.com/matrix-org/vodozemac/commit/734b6c6948d4b2bdee3dd8b4efa591d93a61d272
- https://github.com/matrix-org/vodozemac/commit/77765dace11266ef9523301624a01265c6e0f790
- https://arxiv.org/abs/2108.04600
- https://nvd.nist.gov/vuln/detail/CVE-2024-40640
- https://rustsec.org/advisories/RUSTSEC-2024-0354.html
- https://github.com/advisories/GHSA-j8cm-g7r6-hfpq
Blast Radius: 5.1
Affected Packages
cargo:vodozemac
Dependent packages: 4Dependent repositories: 24
Downloads: 169,544 total
Affected Version Ranges: < 0.7.0
Fixed in: 0.7.0
All affected versions: 0.1.0, 0.2.0, 0.3.0, 0.4.0, 0.5.0, 0.5.1, 0.6.0
All unaffected versions: 0.7.0, 0.8.0, 0.8.1