pgsql: Fix incorrect password transformation in contrib/pgcrypto's DES - Mailing list pgsql-committers

From Tom Lane
Subject pgsql: Fix incorrect password transformation in contrib/pgcrypto's DES
Date
Msg-id E1SZkIY-0000ru-M8@gemulon.postgresql.org
Whole thread Raw
List pgsql-committers
Fix incorrect password transformation in contrib/pgcrypto's DES crypt().

Overly tight coding caused the password transformation loop to stop
examining input once it had processed a byte equal to 0x80.  Thus, if the
given password string contained such a byte (which is possible though not
highly likely in UTF8, and perhaps also in other non-ASCII encodings), all
subsequent characters would not contribute to the hash, making the password
much weaker than it appears on the surface.

This would only affect cases where applications used DES crypt() to encode
passwords before storing them in the database.  If a weak password has been
created in this fashion, the hash will stop matching after this update has
been applied, so it will be easy to tell if any passwords were unexpectedly
weak.  Changing to a different password would be a good idea in such a case.
(Since DES has been considered inadequately secure for some time, changing
to a different encryption algorithm can also be recommended.)

This code, and the bug, are shared with at least PHP, FreeBSD, and OpenBSD.
Since the other projects have already published their fixes, there is no
point in trying to keep this commit private.

This bug has been assigned CVE-2012-2143, and credit for its discovery goes
to Rubin Xu and Joseph Bonneau.

Branch
------
REL9_1_STABLE

Details
-------
http://git.postgresql.org/pg/commitdiff/8db2e820c96a0ce33d3c15f476aa78bebce2c732

Modified Files
--------------
contrib/pgcrypto/crypt-des.c |    3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)


pgsql-committers by date:

Previous
From: Tom Lane
Date:
Subject: pgsql: Fix incorrect password transformation in contrib/pgcrypto's DES
Next
From: Tom Lane
Date:
Subject: pgsql: Fix incorrect password transformation in contrib/pgcrypto's DES