Atheme IRC Services before 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence.
Weakness
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Atheme | Atheme | 7.2.0 (including) | 7.2.12 (excluding) |
| Atheme-services | Ubuntu | bionic | * |
| Atheme-services | Ubuntu | focal | * |
| Atheme-services | Ubuntu | impish | * |
| Atheme-services | Ubuntu | kinetic | * |
| Atheme-services | Ubuntu | lunar | * |
| Atheme-services | Ubuntu | mantic | * |
| Atheme-services | Ubuntu | oracular | * |
| Atheme-services | Ubuntu | plucky | * |
| Atheme-services | Ubuntu | trusty | * |
| Atheme-services | Ubuntu | xenial | * |
Potential Mitigations
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/114.html
- https://cwe.mitre.org/data/definitions/115.html
- https://cwe.mitre.org/data/definitions/151.html
- https://cwe.mitre.org/data/definitions/194.html
- https://cwe.mitre.org/data/definitions/22.html
- https://cwe.mitre.org/data/definitions/57.html
- https://cwe.mitre.org/data/definitions/593.html
- https://cwe.mitre.org/data/definitions/633.html
- https://cwe.mitre.org/data/definitions/650.html
- https://cwe.mitre.org/data/definitions/94.html
References
- https://github.com/atheme/atheme/commit/4e664c75d0b280a052eb8b5e81aa41944e593c52
- https://github.com/atheme/atheme/compare/v7.2.11...v7.2.12
- https://www.openwall.com/lists/oss-security/2022/01/30/4
- https://github.com/atheme/atheme/commit/4e664c75d0b280a052eb8b5e81aa41944e593c52
- https://github.com/atheme/atheme/compare/v7.2.11...v7.2.12
- https://www.openwall.com/lists/oss-security/2022/01/30/4