Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Buffer overflow in the _sha3 module in python versions <= 3.10 #98517

Open
botovq opened this issue Oct 21, 2022 · 1 comment
Open

Buffer overflow in the _sha3 module in python versions <= 3.10 #98517

botovq opened this issue Oct 21, 2022 · 1 comment
Assignees
@ambv @ned-deily @pablogsal
Labels
3.7 3.8 3.9 3.10 type-bug An unexpected behavior, bug, or error type-security A security issue

Comments

@botovq
Copy link

botovq commented Oct 21, 2022
edited

CVE-2022-37454 affects Python versions prior to 3.11. The fix discussed in XKCP's advisory can be adapted to these versions. The discoverer's writeup contains code that might be turned into regression tests.

Python 3.11 and later switched to using tiny_sha3 in GH-32060, so they should not be affected.

Tasks
@botovq botovq added the type-bug An unexpected behavior, bug, or error label Oct 21, 2022
botovq added a commit to botovq/cpython that referenced this issue Oct 21, 2022
@botovq
pythongh-98517: Fix buffer overflows in _sha3 module
ae4389c 
This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/
@bedevere-bot bedevere-bot mentioned this issue Oct 21, 2022
Merged
@gpshead
Copy link
Member

gpshead commented Oct 21, 2022
edited

Scope: When Python is linked against OpenSSL 1.1.1 or later, which is true on many modern systems, the OpenSSL provided sha3 implementation will be used instead of the vulnerable bundled _sha3 XKCP module code.

You can tell if your Python 3.10 or earlier is vulnerable by doing the following:

A potentially vulnerable Python if unpatched looks like this:

>>> import hashlib
>>> hashlib.sha3_224
<class '_sha3.sha3_224'>

A non-vulnerable Python looks like this:

>>> import hashlib
>>> hashlib.sha3_224
<built-in function openssl_sha3_224>

gpshead pushed a commit that referenced this issue Oct 21, 2022
@botovq
[3.10] gh-98517: Fix buffer overflows in _sha3 module (#98519)
0e4e058 
This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/

Regression test added by: Gregory P. Smith [Google LLC] <greg@krypto.org>
miss-islington pushed a commit to miss-islington/cpython that referenced this issue Oct 21, 2022
@botovq @miss-islington
[3.10] pythongh-98517: Fix buffer overflows in _sha3 module (pythonGH…
915bdf4 
…-98519)

This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/

Regression test added by: Gregory P. Smith [Google LLC] <greg@krypto.org>
(cherry picked from commit 0e4e058)

Co-authored-by: Theo Buehler <botovq@users.noreply.github.com>
This was referenced Oct 21, 2022
Open
Open
Merged
miss-islington pushed a commit to miss-islington/cpython that referenced this issue Oct 21, 2022
@botovq @miss-islington
[3.10] pythongh-98517: Fix buffer overflows in _sha3 module (pythonGH…
ede8c1b 
…-98519)

This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/

Regression test added by: Gregory P. Smith [Google LLC] <greg@krypto.org>
(cherry picked from commit 0e4e058)

Co-authored-by: Theo Buehler <botovq@users.noreply.github.com>
ned-deily pushed a commit that referenced this issue Oct 22, 2022
@miss-islington @botovq
[3.7] gh-98517: Fix buffer overflows in _sha3 module (GH-98519) (GH-9…
8088c90 
…8528)

This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/

Regression test added by: Gregory P. Smith [Google LLC] <greg@krypto.org>
(cherry picked from commit 0e4e058)

Co-authored-by: Theo Buehler <botovq@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ambv ambv

@ned-deily ned-deily

@pablogsal pablogsal

Labels
3.7 3.8 3.9 3.10 type-bug An unexpected behavior, bug, or error type-security A security issue
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@ambv @gpshead @ned-deily @botovq @pablogsal