CVE-2023-29409 : Extremely large RSA keys in certificate chains can cause a client/server to expe

Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to <= 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three certificates in circulation with keys larger than this, and all three appear to be test certificates that are not actively deployed. It is possible there are larger keys in use in private PKIs, but we target the web PKI, so causing breakage here in the interests of increasing the default safety of users of crypto/tls seems reasonable.

Published 2023-08-02 20:15:12

Updated 2023-11-25 11:15:15

Source Go Project

View at NVD, CVE.org

Products affected by CVE-2023-29409

Golang » GO
Versions before (<) 1.19.12
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
Matching versions
Golang » GO
Versions from including (>=) 1.20.0 and before (<) 1.20.7
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
Matching versions
Golang » GO » Version: 1.21.0 Update RC1
cpe:2.3:a:golang:go:1.21.0:rc1:*:*:*:*:*:*
Matching versions
Golang » GO » Version: 1.21.0 Update RC2
cpe:2.3:a:golang:go:1.21.0:rc2:*:*:*:*:*:*
Matching versions
Golang » GO » Version: 1.21.0 Update RC3
cpe:2.3:a:golang:go:1.21.0:rc3:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-29409

EPSS FAQ

0.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 25 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-29409

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L	3.9	1.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: Low

CWE ids for CVE-2023-29409

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.
Assigned by:
- nvd@nist.gov (Primary)
- security@golang.org (Secondary)

References for CVE-2023-29409

https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ

[security] Go 1.20.7 and Go 1.19.12 are released
Mailing List;Vendor Advisory
https://go.dev/issue/61460

crypto/tls: verifying certificate chains containing large RSA keys is slow [CVE-2023-29409] · Issue #61460 · golang/go · GitHub
Issue Tracking;Patch;Vendor Advisory
https://go.dev/cl/515257

crypto/tls: restrict RSA keys in certificates to <= 8192 bits (515257) · Gerrit Code Review
Patch
https://pkg.go.dev/vuln/GO-2023-1987

GO-2023-1987 - Go Packages
Patch;Vendor Advisory
https://security.gentoo.org/glsa/202311-09

Go: Multiple Vulnerabilities (GLSA 202311-09) — Gentoo security

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20230831-0010/

CVE-2023-29409 Golang Vulnerability in NetApp Products | NetApp Product Security

Jump to

Vulnerability Details : CVE-2023-29409

Products affected by CVE-2023-29409

Exploit prediction scoring system (EPSS) score for CVE-2023-29409

CVSS scores for CVE-2023-29409

CWE ids for CVE-2023-29409

References for CVE-2023-29409