CVE-2025-1057 – keylime

Package

Manager: pip
Name: keylime
Vulnerable Version: =7.12.0 || >=7.12.0 <7.12.1

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

EPSS: 0.00059 pctl0.18638

Details

Keylime registrar is vulnerable to Denial-of-Service attack when updated to version 7.12.0 ### Impact The Keylime `registrar` implemented more strict type checking on version 7.12.0. As a result, when updated to version 7.12.0, the `registrar` will not accept the format of the data previously stored in the database by versions >= 7.8.0, raising an exception. This makes the Keylime `registrar` vulnerable to a Denial-of-Service attack in an update scenario, as an attacker could populate the `registrar` database by creating multiple valid agent registrations with different UUIDs while the version is still < 7.12.0. Then, when the Keylime `registrar` is updated to the 7.12.0 version, any query to the database matching any of the entries populated by the attacker will result in failure. ### Patches Users should upgrade to versions >= 7.12.1 ### Workarounds - Remove the registrar database and re-register all agents ### Credit Reported by: Anderson Toshiyuki Sasaki/@ansasaki Patched by: Anderson Toshiyuki Sasaki/@ansasaki

Metadata

Created: 2025-02-14T18:03:14Z
Modified: 2025-03-15T20:47:38Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/02/GHSA-9jxq-5x44-gx23/GHSA-9jxq-5x44-gx23.json
CWE IDs: ["CWE-1287", "CWE-704"]
Alternative ID: GHSA-9jxq-5x44-gx23
Finding: F184
Auto approve: 1