CVE-2026-34580: Authentication Bypass in Botan 3.11.0

此身份验证绕过漏洞允许攻击者伪造证书，从而绕过 Botan 库的证书验证过程。攻击者可以利用此漏洞冒充合法用户或系统，访问受保护的资源或执行未经授权的操作。由于 Botan 广泛应用于各种安全应用中，例如 TLS/SSL 连接、数字签名和加密通信，因此此漏洞的潜在影响非常广泛。攻击者可能利用此漏洞窃取敏感数据，例如密钥、证书和用户凭据，或者篡改系统配置，导致服务中断或数据损坏。类似于其他证书验证绕过漏洞，此漏洞可能被用于中间人攻击或恶意软件传播。

Applications and systems relying on Botan 3.11.0 for certificate validation are at risk. This includes systems using Botan for TLS/SSL connections, digital signatures, and other cryptographic operations. Specifically, developers who have integrated Botan into custom applications or embedded systems are particularly vulnerable.

• linux / server: Examine Botan library usage within your applications. Use ldd to identify applications linking to Botan. Then, inspect the application's code for calls to CertificateStore::certificateknown.

ldd /path/to/application | grep botan

• generic web: If Botan is used in a web server or application, review the server's configuration for certificate pinning or other validation mechanisms. Check for unusual certificate chains or certificate errors in the server's logs. • c: Review Botan library integration points in your C/C++ applications. Look for code that relies on CertificateStore::certificateknown for certificate validation.

1. 2026-04-07Disclosure

   disclosure

1. 已保留2026-03-30
2. 发布日期2026-04-07
3. 修改日期2026-04-09
4. EPSS 更新日期2026-04-15

缓解 CVE-2026-34580 漏洞的最佳方法是立即升级到 Botan 3.11.1 或更高版本。如果无法立即升级，可以考虑以下临时缓解措施：首先，审查 Botan 库的配置，确保证书验证策略尽可能严格。其次，实施额外的身份验证层，例如多因素身份验证，以降低攻击者绕过证书验证的风险。第三，监控 Botan 库的日志，及时发现异常活动。如果发现可疑行为，立即采取措施进行隔离和调查。升级后，请验证证书验证功能是否正常工作，确保漏洞已成功修复。