Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2024.0140
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2024-0140)
Zusammenfassung:	The remote host is missing an update for the 'filezilla, libfilezilla, putty' package(s) announced via the MGASA-2024-0140 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'filezilla, libfilezilla, putty' package(s) announced via the MGASA-2024-0140 advisory. Vulnerability Insight: The PuTTY client and all related components generate heavily biased ECDSA nonces in the case of NIST P-521. To be more precise, the first 9 bits of each ECDSA nonce are zero. This allows for full secret key recovery in roughly 60 signatures by using state-of-the-art techniques. These signatures can either be harvested by a malicious server (man-in-the-middle attacks are not possible given that clients do not transmit their signature in the clear) or from any other source, e.g. signed git commits through forwarded agents. The nonce generation for other curves is slightly biased as well. However, the bias is negligible and far from enough to perform lattice-based key recovery attacks (not considering cryptanalytical advancements). Affected Software/OS: 'filezilla, libfilezilla, putty' package(s) on Mageia 9. Solution: Please install the updated package(s). CVSS Score: 5.4 CVSS Vector: AV:N/AC:H/Au:N/C:C/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2024-31497 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZS3B37GNGWOOV7QU7B7JFK76U4TOP4V/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WFDZBV7ZCAZ6AH3VCQ34SSY7L3J7VZXZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WMJH7M663BVO3SY6MFAW2FAZWLLXAPRQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PUOTQVGC4DISVHQGSPUYGXO6TLDK65LA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMHILY2K7HQGQRHOC375KRRG2M6625RD/ https://bugzilla.redhat.com/show_bug.cgi?id=2275183 https://bugzilla.suse.com/show_bug.cgi?id=1222864 https://docs.ccv.brown.edu/oscar/connecting-to-oscar/ssh/ssh-agent-forwarding/key-generation-and-agent-forwarding-with-putty https://filezilla-project.org/versions.php https://git.tartarus.org/?h=c193fe9848f50a88a4089aac647fecc31ae96d27&p=simon/putty.git https://github.com/advisories/GHSA-6p4c-r453-8743 https://github.com/daedalus/BreakingECDSAwithLLL https://news.ycombinator.com/item?id=40044665 https://security-tracker.debian.org/tracker/CVE-2024-31497 https://securityonline.info/cve-2024-31497-critical-putty-vulnerability-exposes-private-keys-immediate-action-required/ https://tartarus.org/~simon/putty-snapshots/htmldoc/Chapter9.html#pageant-forward https://tortoisegit.org https://twitter.com/CCBalert/status/1780229237569470549 https://twitter.com/lambdafu/status/1779969509522133272 https://winscp.net/eng/news.php https://www.bleepingcomputer.com/news/security/putty-ssh-client-flaw-allows-recovery-of-cryptographic-private-keys/ https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html https://www.openwall.com/lists/oss-security/2024/04/15/6 https://www.reddit.com/r/sysadmin/comments/1c4wmoj/putty_vulnerability_affecting_v068_to_v08/ https://lists.debian.org/debian-lts-announce/2024/06/msg00014.html http://www.openwall.com/lists/oss-security/2024/04/15/6
Copyright	Copyright (C) 2024 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.