The vault key is sealed using SHA1 PCRs instead of SHA256 PCRs
Thus an attacker with physical access to an EVE-OS device can try to brute force creating a kernel or rootfs image which produces the same SHA1 PCR but with malicious content.
Fixed in 9.4.3-lts and 10.1.0
None
| Score | Percentile |
|---|---|
| 0.01% | 2.50% |
| Base score | Version | Severity | Vector |
|---|---|---|---|
| 6.7 | 3.1 | — |
|
| Type | Value |
|---|---|
| GHSA | GHSA-4jvr-vj2c-8q37 ↗ |
| CVE | CVE-2023-43635 ↗ |
Vulnerable version ranges and first patched releases as published by GitHub.
| Ecosystem | Package | Vulnerable range | First patched | Vulnerable functions |
|---|---|---|---|---|
| go | github.com/lf-edge/eve | < 0.0.0-20230519072751-977f42b07fa9 | 0.0.0-20230519072751-977f42b07fa9 | — |