You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I wanted to follow up on the issue I mentioned earlier in AATP regarding Eufy Security. Starting from Node.js versions 18.19.1, 20.11.1, and 21.6.2, the RSA_PKCS1_PADDING padding is no longer supported. This padding is essential for decrypting streams and P2P commands in the Eufy Security application.
There are two potential solutions to address this:
Reverting via CLI Command:
Use the following command to revert the behavior:
node index.js --security-revert=CVE-2023-46809
Updating OpenSSL to Version 3.2:
OpenSSL version 3.2 includes support for implicit rejection, which would re-enable RSA_PKCS1_PADDING in a compliant way.
"The RSA_PKCS1_PADDING padding was disabled unless the OpenSSL build supports implicit rejection."
If Node.js integrates the correct version of OpenSSL (3.2), the memory usage of the Eufy Security application could be significantly reduced, preventing frequent app crashes and improving overall performance.
Additionally, there’s an open discussion on this issue in the Eufy Security GitHub Repository, which might provide more context and user insights. bropat/eufy-security-client#487
I hope this is something you can look into.
The text was updated successfully, but these errors were encountered:
I wanted to follow up on the issue I mentioned earlier in AATP regarding Eufy Security. Starting from Node.js versions
18.19.1,20.11.1, and21.6.2, theRSA_PKCS1_PADDINGpadding is no longer supported. This padding is essential for decrypting streams and P2P commands in theEufy Securityapplication.There are two potential solutions to address this:
Use the following command to revert the behavior:
OpenSSL version 3.2 includes support for implicit rejection, which would re-enable RSA_PKCS1_PADDING in a compliant way.
According to the Node.js documentation (Node.js Crypto Documentation):
If Node.js integrates the correct version of OpenSSL (3.2), the memory usage of the Eufy Security application could be significantly reduced, preventing frequent app crashes and improving overall performance.
Additionally, there’s an open discussion on this issue in the Eufy Security GitHub Repository, which might provide more context and user insights. bropat/eufy-security-client#487
I hope this is something you can look into.
The text was updated successfully, but these errors were encountered: