`calamares-nixos-extensions` LUKS keyfile exposure
CVE-2023-36476

7.9HIGH

Key Information:

Vendor

Nixos

Status
Calamares-nixos-extensions
Vendor
CVE Published:
29 June 2023

What is CVE-2023-36476?

The Calamares NixOS Extensions, specifically versions up to 0.3.12, are vulnerable due to insecure handling of LUKS key files. When users install NixOS using the graphical Calamares installer with an unencrypted /boot, the LUKS key file is stored as a plaintext CPIO archive within the initrd. This issue primarily affects users on non-UEFI systems or those utilizing a separate LUKS partition, exposing sensitive data. To address this vulnerability, a patch is expected in version 0.3.13, with workarounds available for advanced users to re-encrypt their partitions.

Affected Version(s)

calamares-nixos-extensions <= 0.3.12

References

https://github.com/NixOS/calamares-nixos-extensions/secur...
x_refsource_CONFIRM
https://github.com/osresearch/heads/issues/1348
x_refsource_MISC
https://github.com/vlinkz/calamares-nixos-extensions/comm...
x_refsource_MISC

CVSS V3.1

Score:
7.9
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.