CVE-2016-1000338

Published: Jun 1, 2018Modified: May 5, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up the signature and still have it validate, which in some cases may allow the introduction of 'invisible' data into a signed structure.

Affected (5)

Products: Bouncycastle: Legion Of The Bouncy Castle Java Crytography Api · Canonical: Ubuntu Linux · Redhat: Satellite, Satellite Capsule · +1 more

Show all products

Bouncycastle: Legion Of The Bouncy Castle Java Crytography Api · Canonical: Ubuntu Linux · Redhat: Satellite, Satellite Capsule · Netapp: 7 Mode Transition Tool

1 product

Legion Of The Bouncy Castle Java Crytography Api

1 product

2 products

Satellite Capsule

1 product

7 Mode Transition Tool

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Bouncycastle Legion Of The Bouncy Castle Java Crytography Api	From 1.38 to 1.56

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Redhat Satellite	Version 6.4
Redhat Satellite Capsule	Version 6.4

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Netapp 7 Mode Transition Tool	All versions

Related CWEs

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (16)

https://access.redhat.com/errata/RHSA-2018:2669

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2927

Source: cve@mitre.org

Third Party Advisory

https://github.com/bcgit/bc-java/commit/b0c3ce99d43d73a096268831d0d120ffc89eac7f#diff-3679f5a9d2b939d0d3ee1601a7774fb0

Source: cve@mitre.org

PatchThird Party Advisory

https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E

Source: cve@mitre.org

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2018/07/msg00009.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://security.netapp.com/advisory/ntap-20231006-0011/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3727-1/

Source: cve@mitre.org

Third Party Advisory

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2669

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2927

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/bcgit/bc-java/commit/b0c3ce99d43d73a096268831d0d120ffc89eac7f#diff-3679f5a9d2b939d0d3ee1601a7774fb0

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2018/07/msg00009.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://security.netapp.com/advisory/ntap-20231006-0011/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3727-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.