GnuPG Multiple Signed Message Modification Vulnerability
BID:1797
Info
GnuPG Multiple Signed Message Modification Vulnerability
| Bugtraq ID: | 1797 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 12 2000 12:00AM |
| Updated: | Oct 12 2000 12:00AM |
| Credit: | First posted to Bugtraq by Jim Small <[email protected]> on October 11, 2000. Followup posted to Bugtraq by Werner Koch <[email protected]> on Oct 13, 2000. |
| Vulnerable: |
GNU GNU Privacy Guard 1.0.3 GNU GNU Privacy Guard 1.0.2 GNU GNU Privacy Guard 1.0.1 GNU GNU Privacy Guard 1.0 |
| Not Vulnerable: |
GNU GNU Privacy Guard 1.0.3 b |
Discussion
GnuPG Multiple Signed Message Modification Vulnerability
GnuPG is an open-source public/private key encryption system. There is a serious vulnerability in all versions of GnuPG below version 1.0.3b involving verifying the integrity of files with multiple signed messages. When verifying the integrity of these multiple-message files, GnuPG fails to verify each signature, rather flagging the document as either valid or invalid (integrity wise) based on the first message and signature. As a result, it is possible for an attacker to make modifications to signed messages within these files that will go unnoticed by GnuPG so long as the first signed message remains intact. More detailed technical information is available in Werner Koch's post to Bugtraq on the subject.
GnuPG is an open-source public/private key encryption system. There is a serious vulnerability in all versions of GnuPG below version 1.0.3b involving verifying the integrity of files with multiple signed messages. When verifying the integrity of these multiple-message files, GnuPG fails to verify each signature, rather flagging the document as either valid or invalid (integrity wise) based on the first message and signature. As a result, it is possible for an attacker to make modifications to signed messages within these files that will go unnoticed by GnuPG so long as the first signed message remains intact. More detailed technical information is available in Werner Koch's post to Bugtraq on the subject.
Exploit / POC
GnuPG Multiple Signed Message Modification Vulnerability
See discussion.
See discussion.
Solution / Fix
GnuPG Multiple Signed Message Modification Vulnerability
Solution:
A snapshot of the updated GnuPG source tree is available at:
ftp://ftp.guug.de/gcrypt/devel/gnupg-1.0.3b.tar.gz (1681k)
ftp://ftp.guug.de/gcrypt/devel/gnupg-1.0.3b.tar.gz.sig
Trustix recently released several updated packages:
RedHat
iputils: Fixes serveral problems in ping including a buffer overflow.
gnupg: Fixed a serious bug which could lead to false signature verification results when more than one signature is fed to gpg.
ypbind: Local root exploit. Linux ypbind
Users of TSL 1.0x and 1.1 that worry about local security should
definitely upgrade.
MD5sums:
9e2bbf3ddd728da4cbab3ece1ba390b7 gnupg-1.0.4-2tr.i586.rpm
43d503eb306f202c794ca064980574ad iputils-20001011-1tr.i586.rpm
8625657f6edea52b88e0cff1dfff4bb4 ypbind-3.3-29tr.i586.rpm
Get them at:
ftp://ftp.trustix.com/pub/Trustix/updates/1.1/RPMS/ or
http://www.trustix.net/download/Trustix/updates/1.1/RPMS/
Conectiva Linux:
ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1.0.4-1cl.i386.rpm
GNU GNU Privacy Guard 1.0
GNU GNU Privacy Guard 1.0.1
GNU GNU Privacy Guard 1.0.2
GNU GNU Privacy Guard 1.0.3
Solution:
A snapshot of the updated GnuPG source tree is available at:
ftp://ftp.guug.de/gcrypt/devel/gnupg-1.0.3b.tar.gz (1681k)
ftp://ftp.guug.de/gcrypt/devel/gnupg-1.0.3b.tar.gz.sig
Trustix recently released several updated packages:
RedHat
iputils: Fixes serveral problems in ping including a buffer overflow.
gnupg: Fixed a serious bug which could lead to false signature verification results when more than one signature is fed to gpg.
ypbind: Local root exploit. Linux ypbind
Users of TSL 1.0x and 1.1 that worry about local security should
definitely upgrade.
MD5sums:
9e2bbf3ddd728da4cbab3ece1ba390b7 gnupg-1.0.4-2tr.i586.rpm
43d503eb306f202c794ca064980574ad iputils-20001011-1tr.i586.rpm
8625657f6edea52b88e0cff1dfff4bb4 ypbind-3.3-29tr.i586.rpm
Get them at:
ftp://ftp.trustix.com/pub/Trustix/updates/1.1/RPMS/ or
http://www.trustix.net/download/Trustix/updates/1.1/RPMS/
Conectiva Linux:
ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1.0.4-1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/gnupg-1.0.4-1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1.0.4-1cl.i386.rpm
GNU GNU Privacy Guard 1.0
-
Conectiva 4.0 i386 gnupg-1.0.4-5cl.i386
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.0es i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-5cl.i386.rp m -
Conectiva 4.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.2 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 6.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/gnupg-1.0.4-5cl.i386.rpm -
Conectiva ecommerce i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1 .0.4-5cl.i386.rpm -
Conectiva graficas i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1. 0.4-5cl.i386.rpm
GNU GNU Privacy Guard 1.0.1
-
Conectiva 4.0 i386 gnupg-1.0.4-5cl.i386
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.0es i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-5cl.i386.rp m -
Conectiva 4.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.2 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 6.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/gnupg-1.0.4-5cl.i386.rpm -
Conectiva ecommerce i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1 .0.4-5cl.i386.rpm -
Conectiva graficas i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1. 0.4-5cl.i386.rpm
GNU GNU Privacy Guard 1.0.2
-
Conectiva 4.0 i386 gnupg-1.0.4-5cl.i386
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.0es i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-5cl.i386.rp m -
Conectiva 4.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.2 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 6.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/gnupg-1.0.4-5cl.i386.rpm -
Conectiva ecommerce i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1 .0.4-5cl.i386.rpm -
Conectiva graficas i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1. 0.4-5cl.i386.rpm
GNU GNU Privacy Guard 1.0.3
-
Conectiva 4.0 i386 gnupg-1.0.4-5cl.i386
ftp://atualizacoes.conectiva.com.br/4.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.0es i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/gnupg-1.0.4-5cl.i386.rp m -
Conectiva 4.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 4.2 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 5.1 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/gnupg-1.0.4-5cl.i386.rpm -
Conectiva 6.0 i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/gnupg-1.0.4-5cl.i386.rpm -
Conectiva ecommerce i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/gnupg-1 .0.4-5cl.i386.rpm -
Conectiva graficas i386 gnupg-1.0.4-5cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/gnupg-1. 0.4-5cl.i386.rpm -
Debian 2.2 potato (Alpha): gnupg_1.0.4-1_alpha
http://security.debian.org/dists/stable/updates/main/binary-alpha/gnup g_1.0.4-1_alpha.deb -
Debian 2.2 potato (ARM): gnupg_1.0.4-1_arm
http://security.debian.org/dists/stable/updates/main/binary-arm/gnupg_ 1.0.4-1_arm.deb -
Debian 2.2 potato (Intel): gnupg_1.0.4-1_i386
http://security.debian.org/dists/stable/updates/main/binary-i386/gnupg _1.0.4-1_i386.deb -
Debian 2.2 potato (m68k): gnupg_1.0.4-1_m68k
http://security.debian.org/dists/stable/updates/main/binary-m68k/gnupg _1.0.4-1_m68k.deb -
Debian 2.2 potato (ppc): gnupg_1.0.4-1_powerpc
http://security.debian.org/dists/stable/updates/main/binary-powerpc/gn upg_1.0.4-1_powerpc.deb -
Debian 2.2 potato (Sparc): gnupg_1.0.4-1_sparc
http://security.debian.org/dists/stable/updates/main/binary-sparc/gnup g_1.0.4-1_sparc.deb -
FreeBSD ports-3 (Intel): gnupg-1.04.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/securit y/gnupg-1.04.tgz -
FreeBSD ports-4 (Alpha): gnupg-1.04.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/securi ty/gnupg-1.04.tgz -
FreeBSD ports-4 (Intel): gnupg-1.04.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/securit y/gnupg-1.04.tgz -
FreeBSD ports-5 (Alpha): gnupg-1.04.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/secur ity/gnupg-1.04.tgz -
FreeBSD ports-5 (Intel): gnupg-1.04.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/securi ty/gnupg-1.04.tgz