GHSA-58fj-7xwc-45hq
This vulnerability involves accepting an un-negotiated Raw Public Key (RPK) in place of an X.509 certificate, bypassing chain validation. Since a raw public key lacks a certificate chain, the parsing function accepts it without trust verification unless RPK was explicitly negotiated for the peer. The fix enforces default expectation of X.509 certificates when no type is negotiated and rejects mismatches, including un-negotiated RPKs. This issue only affects builds with Raw Public Key support enabled, which is disabled by default in standalone builds but included when using --enable-all.
AI Analysis
Technical Summary
The vulnerability arises from accepting a Raw Public Key (RPK) without proper negotiation, allowing bypass of certificate chain validation. The parsing function ParseCertRelative() accepts RPKs without trust verification because they have no chain, which should only be accepted if RPK was negotiated. The implemented fix defaults to expecting X.509 certificates per RFC 7250/8446 when no certificate type is negotiated and rejects any certificate type mismatches, including un-negotiated RPKs, with an UNSUPPORTED_CERTIFICATE error. This vulnerability affects only builds with Raw Public Key support (HAVE_RPK) enabled, which is disabled by default in standalone builds but enabled with --enable-all.
Potential Impact
An attacker could bypass certificate chain validation by presenting an un-negotiated Raw Public Key, potentially undermining the trust model of TLS connections. This could lead to acceptance of unauthenticated peers, increasing the risk of man-in-the-middle or impersonation attacks. However, this only affects configurations where Raw Public Key support is enabled and not properly negotiated.
Mitigation Recommendations
The issue is addressed by defaulting to expect X.509 certificates when no certificate type is negotiated and rejecting un-negotiated Raw Public Keys. Users should ensure that Raw Public Key support (HAVE_RPK) is disabled unless explicitly required and properly negotiated. Since this fix is included in the codebase, users should verify they are using a version with this check implemented. Patch status is not explicitly confirmed; check the vendor advisory for current remediation guidance.
GHSA-58fj-7xwc-45hq
Description
This vulnerability involves accepting an un-negotiated Raw Public Key (RPK) in place of an X.509 certificate, bypassing chain validation. Since a raw public key lacks a certificate chain, the parsing function accepts it without trust verification unless RPK was explicitly negotiated for the peer. The fix enforces default expectation of X.509 certificates when no type is negotiated and rejects mismatches, including un-negotiated RPKs. This issue only affects builds with Raw Public Key support enabled, which is disabled by default in standalone builds but included when using --enable-all.
CVSS v4.0
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability arises from accepting a Raw Public Key (RPK) without proper negotiation, allowing bypass of certificate chain validation. The parsing function ParseCertRelative() accepts RPKs without trust verification because they have no chain, which should only be accepted if RPK was negotiated. The implemented fix defaults to expecting X.509 certificates per RFC 7250/8446 when no certificate type is negotiated and rejects any certificate type mismatches, including un-negotiated RPKs, with an UNSUPPORTED_CERTIFICATE error. This vulnerability affects only builds with Raw Public Key support (HAVE_RPK) enabled, which is disabled by default in standalone builds but enabled with --enable-all.
Potential Impact
An attacker could bypass certificate chain validation by presenting an un-negotiated Raw Public Key, potentially undermining the trust model of TLS connections. This could lead to acceptance of unauthenticated peers, increasing the risk of man-in-the-middle or impersonation attacks. However, this only affects configurations where Raw Public Key support is enabled and not properly negotiated.
Mitigation Recommendations
The issue is addressed by defaulting to expect X.509 certificates when no certificate type is negotiated and rejecting un-negotiated Raw Public Keys. Users should ensure that Raw Public Key support (HAVE_RPK) is disabled unless explicitly required and properly negotiated. Since this fix is included in the codebase, users should verify they are using a version with this check implemented. Patch status is not explicitly confirmed; check the vendor advisory for current remediation guidance.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-58fj-7xwc-45hq
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-55960"]
- Ecosystems
- []
- Database Specific Severity
- HIGH
- Cvss Version
- 4.0
Threat ID: 6a3ef7e927e9c79719032de1
Added to database: 06/26/2026, 22:06:33 UTC
Last enriched: 06/26/2026, 22:47:23 UTC
Last updated: 06/26/2026, 23:51:23 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.