crypto/x509: ParsePKCS1PrivateKey panic with partial keys [CVE-2025-22865] #71216

rolandshoemaker · 2025-01-10T01:11:58Z

Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic
when verifying that the key is well formed.

Thanks to Philippe Antoine (Catena cyber) for reporting this issue.

This is CVE-2025-22865.

/cc @golang/security and @golang/release

gabyhelp · 2025-01-10T01:27:40Z

Related Issues

_{(Emoji vote if this was helpful or unhelpful; more detailed feedback welcome in this discussion.)}

gopherbot · 2025-01-16T18:26:06Z

Change https://go.dev/cl/643098 mentions this issue: crypto/x509: avoid panic when parsing partial PKCS#1 private keys

gopherbot · 2025-01-16T18:26:51Z

Change https://go.dev/cl/643102 mentions this issue: crypto/x509: avoid panic when parsing partial PKCS#1 private keys

… PKCS#1 private keys These keys are off-spec, but have historically been accepted by ParsePKCS1PrivateKey. Thanks to Philippe Antoine (Catena cyber) for reporting this issue. Fixes #71216 Fixes CVE-2025-22865 Change-Id: I6a6a46564156fa32e29e8d6acbec3fbac47c7352 Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1820 Reviewed-by: Tatiana Bradley <[email protected]> Reviewed-by: Damien Neil <[email protected]> Commit-Queue: Roland Shoemaker <[email protected]> (cherry picked from commit 36c6c8b6957e155770461fd710aea9477ef3bc88) Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1841 Reviewed-on: https://go-review.googlesource.com/c/go/+/643102 Auto-Submit: Michael Knyszek <[email protected]> Reviewed-by: Michael Pratt <[email protected]> LUCI-TryBot-Result: Go LUCI <[email protected]>

… PKCS#1 private keys These keys are off-spec, but have historically been accepted by ParsePKCS1PrivateKey. Thanks to Philippe Antoine (Catena cyber) for reporting this issue. Fixes golang#71216 Fixes CVE-2025-22865 Change-Id: I6a6a46564156fa32e29e8d6acbec3fbac47c7352 Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1820 Reviewed-by: Tatiana Bradley <[email protected]> Reviewed-by: Damien Neil <[email protected]> Commit-Queue: Roland Shoemaker <[email protected]> (cherry picked from commit 36c6c8b6957e155770461fd710aea9477ef3bc88) Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1841 Reviewed-on: https://go-review.googlesource.com/c/go/+/643102 Auto-Submit: Michael Knyszek <[email protected]> Reviewed-by: Michael Pratt <[email protected]> LUCI-TryBot-Result: Go LUCI <[email protected]>

rolandshoemaker added Security NeedsFix The path to resolution is known, but the work has not been done. labels Jan 10, 2025

gabyhelp added the BugReport Issues describing a possible bug in the Go implementation. label Jan 10, 2025

rolandshoemaker removed the BugReport Issues describing a possible bug in the Go implementation. label Jan 15, 2025

gopherbot closed this as completed in 6a4effa Jan 16, 2025

mknyszek changed the title ~~security: fix CVE-2025-22865~~ crypto/x509: ParsePKCS1PrivateKey panic with partial keys [CVE-2025-22865] Jan 16, 2025

dmitshur added this to the Go1.24 milestone Jan 16, 2025

Provide feedback