Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Problem: V3 protocol handler vulnerable to downgrade attacks #1273

Closed
hintjens opened this issue Dec 4, 2014 · 1 comment
Closed

Problem: V3 protocol handler vulnerable to downgrade attacks #1273

hintjens opened this issue Dec 4, 2014 · 1 comment

Comments

@hintjens
Copy link
Member

hintjens commented Dec 4, 2014

It is easy to bypass the security mechanism in 4.1.0 and 4.0.5 by sending a ZMTP v2 or earlier header. The library accepts such connections without applying its security mechanism.

Solution: if security is defined on a socket, reject all V2 and earlier connections, unconditionally.

Fixed by #6cf120 and related commits.
@hintjens hintjens changed the title Problem: security mechanism is not applied to old protocols Problem: V3 protocol handler is vulnerable to downgrade attacks Dec 4, 2014
@hintjens hintjens changed the title Problem: V3 protocol handler is vulnerable to downgrade attacks Problem: V3 protocol handler vulnerable to downgrade attacks Dec 4, 2014
@hintjens
Copy link
Member Author

hintjens commented Dec 5, 2014

Backported to 4.0.x and 4.1.x.

@hintjens hintjens closed this as completed Dec 5, 2014
@k0da k0da mentioned this issue Jan 28, 2015
Closed
@zultron zultron mentioned this issue May 5, 2015
Merged
zultron added a commit to zultron/zeromq3-deb that referenced this issue May 5, 2015
@zultron
4.0.5-2: Back-port 'protocol downgrade attack' security fix
5425f37 
See
     zeromq/zeromq4-x#101
and
    zeromq/libzmq#1273
bluerise pushed a commit to bitrig/bitrig-ports that referenced this issue May 13, 2015
Security fix for V3 protocol downgrade: zeromq/libzmq#1273
f0a40e0 
testing/ok aja@

Written by: Jasper Lievisse Adriaanse <jasper@openbsd.org>
jcvernaleo pushed a commit to bitrig/bitrig-ports that referenced this issue May 21, 2015
@jcvernaleo
Security fix for V3 protocol downgrade: zeromq/libzmq#1273
a164537 
testing/ok aja@

Written by: Jasper Lievisse Adriaanse <jasper@openbsd.org>
jcvernaleo pushed a commit to bitrig/bitrig-ports that referenced this issue May 26, 2015
@jcvernaleo
Security fix for V3 protocol downgrade: zeromq/libzmq#1273
db98384 
testing/ok aja@

Written by: Jasper Lievisse Adriaanse <jasper@openbsd.org>
jcvernaleo pushed a commit to bitrig/bitrig-ports that referenced this issue May 28, 2015
@jcvernaleo
Security fix for V3 protocol downgrade: zeromq/libzmq#1273
e71ccc1 
testing/ok aja@

Written by: Jasper Lievisse Adriaanse <jasper@openbsd.org>
jcvernaleo pushed a commit to bitrig/bitrig-ports that referenced this issue Jul 7, 2015
@jcvernaleo
Security fix for V3 protocol downgrade: zeromq/libzmq#1273
70eb23e 
testing/ok aja@

Written by: Jasper Lievisse Adriaanse <jasper@openbsd.org>
bluca pushed a commit that referenced this issue Oct 31, 2023
@hintjens
Problem: issue #1273, protocol downgrade attack
77ef79e 
Solution: backport fix from libzmq master. Also backported test
cases.
bluca pushed a commit that referenced this issue Oct 31, 2023
@hintjens
Merge pull request #101 from hintjens/master
b6e3e0f 
Problem: issue #1273, protocol downgrade attack
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hintjens