CVE-2021-27217

Name of the Vulnerable Software and Affected Versions: Yubico yubihsm-shell versions 2.0.0 through 2.0.3

Description: An issue was discovered in the send secure msg() function. The function does not correctly validate the embedded length field of an authenticated message received from the device. Out-of-bounds reads performed by aes remove padding() can crash the running process, depending on the memory layout. This could be used by an attacker to cause a client-side denial of service. The yubihsm-shell project is included in the YubiHSM 2 SDK product.

Recommendations: For versions 2.0.0 through 2.0.3, as a temporary workaround, consider disabling the send secure msg() function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.