Mozilla Foundation Security Advisory 2015-64

ECDSA signature validation fails to handle some signatures correctly

Announced
July 2, 2015
Reporter
Watson Ladd
Impact
Moderate
Products
Firefox, Firefox ESR, Firefox OS, SeaMonkey
Fixed in
  • Firefox 39
  • Firefox ESR 31.8
  • Firefox ESR 38.1
  • Firefox OS 2.2
  • SeaMonkey 2.35

Description

Mozilla community member Watson Ladd reported that the implementation of Elliptical Curve Cryptography (ECC) multiplication for Elliptic Curve Digital Signature Algorithm (ECDSA) signature validation in Network Security Services (NSS) did not handle exceptional cases correctly. This could potentially allow for signature forgery. This issue was fixed in NSS version 3.19.1.

References