Description

In the Bouncy Castle JCE Provider version 1.55 and earlier the DHIES/ECIES CBC mode vulnerable to padding oracle attack. For BC 1.55 and older, in an environment where timings can be easily observed, it is possible with enough observations to identify when the decryption is failing due to padding.

Remediation

References

https://access.redhat.com/errata/RHSA-2018:2669

https://access.redhat.com/errata/RHSA-2018:2927

https://github.com/bcgit/bc-java/commit/21dcb3d9744c83dcf2ff8fcee06dbca7bfa4ef35#diff-4439ce586bf9a13bfec05c0d113b8098

https://lists.debian.org/debian-lts-announce/2018/07/msg00009.html

https://security.netapp.com/advisory/ntap-20181127-0004/

https://usn.ubuntu.com/3727-1/

https://www.oracle.com/security-alerts/cpuoct2020.html

Related Vulnerabilities

CVE-2019-11343 Vulnerability in maven package org.torpedoquery:org.torpedoquery

CVE-2006-1547 Vulnerability in maven package struts:struts

CVE-2020-7700 Vulnerability in npm package phpjs

CVE-2020-7771 Vulnerability in npm package asciitable.js

CVE-2019-10241 Vulnerability in maven package org.eclipse.jetty.aggregate:jetty-all-server

Severity

Medium

Classification

CWE-361 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Patch Third Party Advisory