CVE-2022-29242 : GOST engine is a reference implementation of the Russian GOST crypto algorithms

GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite `TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC` is agreed and the server uses 512 bit GOST secret keys are vulnerable to buffer overflow. GOST engine version 3.0.1 contains a patch for this issue. Disabling ciphersuite `TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC` is a possible workaround.

Published 2022-05-24 15:15:08

Updated 2022-06-07 16:54:01

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: Overflow

Products affected by CVE-2022-29242

Gost Engine Project » Gost Engine
Versions before (<) 3.0.1
cpe:2.3:a:gost_engine_project:gost_engine:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-29242

EPSS FAQ

0.14%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 31 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-29242

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.9	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H	2.2	3.6	GitHub, Inc.
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2022-29242

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Assigned by: security-advisories@github.com (Primary)

References for CVE-2022-29242

https://github.com/gost-engine/engine/commit/7df766124f87768b43b9e8947c5a01e17545772c

Fix buffer overrun in creating key transport blob according to RFC 91… · gost-engine/engine@7df7661 · GitHub
Patch;Third Party Advisory
https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808

On unpacking key blob output buffer size should be fixed · gost-engine/engine@b2b4d62 · GitHub
Patch;Third Party Advisory
https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3

Fix buffer overrun in creating key transport blob according to RFC 91… · gost-engine/engine@c6655a0 · GitHub
Patch;Third Party Advisory
https://github.com/gost-engine/engine/security/advisories/GHSA-2rmw-8wpg-vgw5

Buffer overrun on creating key transport blob · Advisory · gost-engine/engine · GitHub
Third Party Advisory
https://github.com/gost-engine/engine/releases/tag/v3.0.1

Release CVE-2022-29242 fix · gost-engine/engine · GitHub
Release Notes;Third Party Advisory

Jump to

Vulnerability Details : CVE-2022-29242

Products affected by CVE-2022-29242

Exploit prediction scoring system (EPSS) score for CVE-2022-29242

CVSS scores for CVE-2022-29242

CWE ids for CVE-2022-29242

References for CVE-2022-29242