{"id":"PYSEC-2016-10","details":"The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.","aliases":["CVE-2016-1494","GHSA-8rjr-6qq5-pj9p"],"modified":"2023-11-08T03:58:22.257439Z","published":"2016-01-13T15:59:00Z","references":[{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2016/01/05/3"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2016/01/05/1"},{"type":"ARTICLE","url":"https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/"},{"type":"WEB","url":"https://bitbucket.org/sybren/python-rsa/pull-requests/14/security-fix-bb06-attack-in-verify-by/diff"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175897.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175942.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2016-01/msg00032.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/79829"}],"affected":[{"package":{"name":"rsa","ecosystem":"PyPI","purl":"pkg:pypi/rsa"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.3"}]}],"versions":["1.1","1.2","1.3","1.3.1","1.3.2","1.3.3","2.0","3.0","3.0.1","3.1","3.1.1","3.1.2","3.1.3","3.1.4","3.2","3.2.1","3.2.2","3.2.3"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/rsa/PYSEC-2016-10.yaml"}}],"schema_version":"1.7.3"}