CVE-2025-13470

High CVSS: 7.7

In RNP version 0.18.0 a refactoring regression causes the symmetric
session key used for Public-Key Encrypted Session Key (PKESK) packets to
be left uninitialized except for zeroing, resulting in it always being
an all-zero byte array.

Any data encrypted using public-key encryption
in this release can be decrypted trivially by supplying an all-zero
session key, fully compromising confidentiality.

The vulnerability affects only public key encryption (PKESK packets). Passphrase-based encryption (SKESK packets) is not affected.

Root cause: Vulnerable session key buffer used in PKESK packet generation.

The defect was introduced in commit `7bd9a8dc356aae756b40755be76d36205b6b161a` where initialization
logic inside `encrypted_build_skesk()` only randomized the key for the
SKESK path and omitted it for the PKESK path.

Vendor

Product

CWE

CWE-330

Yayın Tarihi

2025-11-21 17:15:50

Güncelleme

2025-11-25 22:16:42

Source Identifier

6504adb2-f5e9-4c9b-9eda-5e19c93bd9b3

KEV Date Added

Kategoriler

CWE-330 HIGH 2025

Referanslar

https://access.redhat.com/security/cve/cve-2025-13402 https://aur.archlinux.org/packages/rnp https://bugzilla.redhat.com/show_bug.cgi?id=2415863 https://github.com/rnpgp/rnp/commit/7bd9a8dc356aae756b40755be76d36205b6b161a https://github.com/rnpgp/rnp/releases/tag/v0.18.1 https://launchpad.net/ubuntu/+source/rnp https://open.ribose.com/advisories/ra-2025-11-20/ https://packages.gentoo.org/packages/dev-util/librnp