{"id":"CVE-2022-29242","summary":"Buffer Overflow on creating key transport blob in GOST Engine","details":"GOST engine is a reference implementation of the Russian GOST crypto algorithms for OpenSSL. TLS clients using GOST engine when ciphersuite `TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC` is agreed and the server uses 512 bit GOST secret keys are vulnerable to buffer overflow. GOST engine version 3.0.1 contains a patch for this issue. Disabling ciphersuite `TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC` is a possible workaround.","aliases":["GHSA-2rmw-8wpg-vgw5"],"modified":"2026-04-10T15:07:22.464922Z","published":"2022-05-24T14:55:13Z","database_specific":{"cwe_ids":["CWE-120"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29242.json","cna_assigner":"GitHub_M"},"references":[{"type":"WEB","url":"https://github.com/gost-engine/engine/releases/tag/v3.0.1"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29242.json"},{"type":"ADVISORY","url":"https://github.com/gost-engine/engine/security/advisories/GHSA-2rmw-8wpg-vgw5"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-29242"},{"type":"FIX","url":"https://github.com/gost-engine/engine/commit/7df766124f87768b43b9e8947c5a01e17545772c"},{"type":"FIX","url":"https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808"},{"type":"FIX","url":"https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gost-engine/engine","events":[{"introduced":"0"},{"fixed":"b2b4d629f100eaee9f5942a106b1ccefe85b8808"},{"fixed":"7df766124f87768b43b9e8947c5a01e17545772c"},{"fixed":"c6655a0b620a3e31f085cc906f8073fe81b2fad3"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"3.0.1"}]}}],"versions":["v3.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-29242.json","vanir_signatures":[{"signature_type":"Function","id":"CVE-2022-29242-28d20ecf","digest":{"length":2169,"function_hash":"237362269457491663453226401506872244564"},"deprecated":false,"target":{"file":"gost_ec_keyx.c","function":"pkey_GOST_ECcp_decrypt"},"source":"https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2022-29242-3bfd62ee","digest":{"length":2032,"function_hash":"185396379853141806682485981741785033222"},"deprecated":false,"target":{"file":"gost_ec_keyx.c","function":"pkey_gost2018_decrypt"},"source":"https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808","signature_version":"v1"},{"signature_type":"Line","id":"CVE-2022-29242-453c2f44","digest":{"threshold":0.9,"line_hashes":["310016482127472029549190774601226147165","239342481626454396380069098192265943799","106258524330448125305108814669609124232","236336101352971730515517972930338119400","179938351455731430368096209509104762187","115060122717738414106397373358508411276","289207067663284405508232200437612828632","311486308608725778559722296202300316423","63665945302413573171368701831063603877","113496603344703428880095507339025167099","261427314136030746772007601315697340863","281912124839311283483922961676138906016","49026473700861127943909910167825946970","236336101352971730515517972930338119400","34422186015399095255172923431191089490","217411480038352116337521858594232703561","154246039997835712392812225625594629754","77210468336320490005212111866066437978","235180056202138438388625634735206073731","7737706494246770193143267422676679574","300837401891233429479498502898077614404","63665945302413573171368701831063603877","247950080753563956679998036352743673380","184701017194468815794296310793347440993","248194884192785211712787868694051468365","258865946704280505007569015386900962311","314828128174249525636845507984454119722"]},"deprecated":false,"target":{"file":"gost_ec_keyx.c"},"source":"https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808","signature_version":"v1"},{"signature_type":"Line","id":"CVE-2022-29242-518bdba1","digest":{"threshold":0.9,"line_hashes":["181079042129152464932669655050909846368","158295315304811067947470668990101074335","239758865765949342379508158066880226757","7856286627472673225455720181777985340"]},"deprecated":false,"target":{"file":"e_gost_err.c"},"source":"https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3","signature_version":"v1"},{"signature_type":"Line","id":"CVE-2022-29242-7c5971bf","digest":{"threshold":0.9,"line_hashes":["65030514501109260630237999873123317328","118759800526282905302103490401707480352","25217270377180783317180417274478535203","82835145014064360693273568063469535198","190573629692466551360361712816298746329","270785022693191878437097098274107173792","59505043026629093783673545315870750222","66807662697499471765169844625495725539","259928869894521617717612055134712520778"]},"deprecated":false,"target":{"file":"gost_ec_keyx.c"},"source":"https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3","signature_version":"v1"},{"signature_type":"Line","id":"CVE-2022-29242-8a1db8d3","digest":{"threshold":0.9,"line_hashes":["225974880740951108040578185193683290431","83795847996781818239151978839630099984","92443563628866274598904886782383012572","271866978301397155848059525930755811876"]},"deprecated":false,"target":{"file":"e_gost_err.h"},"source":"https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3","signature_version":"v1"},{"signature_type":"Line","id":"CVE-2022-29242-931738df","digest":{"threshold":0.9,"line_hashes":["262602055950945910048374951381244017043","133575904534108703594450698815216688908","306646113463739568394603861208556252657","159722934626170867728314086069424947872","204330586165551716996370019380505897401","79117507171449429347525376120382705688","127995012079193092992430084288135743223","204872776069466686650936831459702920582","67801462794236172636082648689476191052"]},"deprecated":false,"target":{"file":"gost_ec_keyx.c"},"source":"https://github.com/gost-engine/engine/commit/7df766124f87768b43b9e8947c5a01e17545772c","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2022-29242-cc967c72","digest":{"length":487,"function_hash":"21195533197373550816777427030843025154"},"deprecated":false,"target":{"file":"gost_ec_keyx.c","function":"pkey_gost_decrypt"},"source":"https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2022-29242-fc24cf99","digest":{"length":2773,"function_hash":"88359506090462606094284207342429409843"},"deprecated":false,"target":{"file":"gost_ec_keyx.c","function":"pkey_gost2018_encrypt"},"source":"https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2022-29242-fe72abfd","digest":{"length":2743,"function_hash":"139848417904887730486267643683863266030"},"deprecated":false,"target":{"file":"gost_ec_keyx.c","function":"pkey_GOST_ECcp_encrypt"},"source":"https://github.com/gost-engine/engine/commit/7df766124f87768b43b9e8947c5a01e17545772c","signature_version":"v1"}],"vanir_signatures_modified":"2026-04-10T15:07:22Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}