#VU63770 Insufficient verification of data authenticity in cryptsetup


Published: 2022-05-27

Vulnerability identifier: #VU63770

Vulnerability risk: Medium

CVSSv3.1: 5.2 [CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4122

CWE-ID: CWE-345

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
cryptsetup
Other software / Other software solutions

Vendor: cryptsetup

Description
The vulnerability allows a local attacker to escalate privileges on the system.

The vulnerability exists due to improper handling of the LUKS2 reencryption recover. A local attacker with physical access to the medium can send a specially crafted LUKS header and trick cryptsetup into disabling encryption during the recovery of the device.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

cryptsetup: 2.3.0 - 2.4.2

External links
http://ubuntu.com/security/notices/USN-5286-1
http://bugzilla.redhat.com/show_bug.cgi?id=2032401

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Amazon Linux AMI update for cryptsetup
Multiple vulnerabilities in IBM Cloud Pak for Security (CP4S)
Multiple vulnerabilities in IBM Robotic Process Automation for Cloud Pak
Multiple vulnerabilities in IBM Netcool Operations Insight
openEuler update for cryptsetup
Ubuntu update for cryptsetup
Red Hat Enterprise Linux 8 update for cryptsetup
SUSE update for cryptsetup