CVE-2020-6829: Medium severity firefox vulnerability

Q: What is CVE-2020-6829?

CVE-2020-6829 is a vulnerability found in nss, where it is possible to extract partial information about the ECDSA nonce during EC scalar point multiplication.

Q: Which software products are affected by CVE-2020-6829?

Mozilla Firefox (version 80), Google Android, IBM Security Guardium (versions 10.5 to 11.4) are affected by CVE-2020-6829.

Q: What is the severity of CVE-2020-6829?

CVE-2020-6829 has a severity rating of 5.3 (Medium).

Q: How can I fix CVE-2020-6829?

To fix CVE-2020-6829, update to Mozilla Firefox 80, Google Android, or the latest version of IBM Security Guardium.

Q: Where can I find more information about CVE-2020-6829?

You can find more information about CVE-2020-6829 in the following references: Mozilla Bugzilla, Mozilla Security Advisories, and Red Hat CVE link.

Published Apr 21, 2020

Updated

A flaw was found in nss. Using the EM side-channel, it is possible to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication during the ECDSA signature generation, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this vulnerability is to data confidentiality.

Other sources

Mozilla Network Security Services (NSS), as used in Mozilla Firefox could allow a local authenticated attacker to obtain sensitive information, caused by a side-channel attack when ECDSA signatures are generated. An attacker could exploit this vulnerability to extract the position of zero and non-zero wNAF digits while nss-certutil tool performs scalar multiplication and obtain the private key.

— IBM

When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. Given an electro-magnetic trace of a few signature generations, the private key could have been computed.

Affected Software

18 affected componentsFixes available

redhat/nspr<0:4.25.0-2.el7_9

0:4.25.0-2.el7_9

redhat/nss<0:3.53.1-3.el7_9

0:3.53.1-3.el7_9

redhat/nss-softokn<0:3.53.1-6.el7_9

0:3.53.1-6.el7_9

redhat/nss-util<0:3.53.1-1.el7_9

0:3.53.1-1.el7_9

redhat/nss<0:3.53.1-17.el8_3

0:3.53.1-17.el8_3

redhat/nss<3.55

3.55

All of the following

Mozilla Firefox=80

Google Android

Mozilla Firefox<80

Mozilla Firefox<80.0

Mozilla Firefox Android<80.0

IBM Security Guardium<=10.5

IBM Security Guardium<=10.6

IBM Security Guardium<=11.0

IBM Security Guardium<=11.1

IBM Security Guardium<=11.2

IBM Security Guardium<=11.3

IBM Security Guardium<=11.4

Remediation

Information

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Event History

Jun 2, 2020

CVE Published

12:00 PM

Oct 28, 2020

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2020-6829?