Catalyst Authentication Credential HTTP Nonce Generation Vulnerability

A vulnerability exists in the Catalyst::Authentication::Credential::HTTP module for Perl, specifically in versions through 1.018. The issue arises from the use of the Data::UUID library to generate nonces for HTTP Digest authentication. Data::UUID is not cryptographically secure and produces version 3 UUIDs, which are generated from known information and deemed unsuitable for security purposes, according to RFC 9562. This flaw violates the nonce generation requirements outlined in RFC 7616, which call for nonces to be derived from a strong cryptographic source.

Impact

The vulnerability leads to the generation of predictable nonces, which can be exploited to replay authentication responses, undermining the integrity of the authentication process.

Reproduction

To reproduce this vulnerability, use Catalyst::Authentication::Credential::HTTP version 1.018 or earlier. Configure the module to use Digest authentication without a secure channel. When a request is made that requires authentication, the server will respond with a nonce generated by Data::UUID. This nonce can be intercepted and reused in a subsequent request, effectively replaying the authentication response.

Remediation

Update to a version of Catalyst::Authentication::Credential::HTTP that uses Crypt::SysRandom for nonce generation instead of Data::UUID. Instructions for updating can be found in the project's VCS repository.