⚠️ php-jwt < v6.11.0 was discovered to contain weak encryption.

[AleksandrovC]

⚠️Affected versions of this package are vulnerable to Inadequate Encryption Strength due to the HMAC and RSA key lengths used in the JSON Web Signature (JWS) implementation not meeting recommended security standards.

⚠️There is no fixed version for firebase/php-jwt.

https://gist.github.com/ZupeiNie/83756316c4c24fe97a50176a92608db3

https://security.snyk.io/vuln/SNYK-PHP-FIREBASEPHPJWT-11356865

[ejunker]

Does anyone know specifically what the issue is? For example, if you use HS256 you should use a 256 bit (32 byte) key. Is the problem that this library is not verifying the length of the key? Or is it saying that you should not use HS256 and use HS512 instead?

[shining-grimace]

Seems a GitHub user launched a far-reaching attack on JWS; see https://gist.github.com/ZupeiNie

I don't know if there's any justification for this.

[bshaffer]

Hello, thanks for reporting this issue.

Can somebody explain what the recommended fix is here? Should we just remove support for HS256?

[ejunker]

@bshaffer I think it is more about enforcing a minimum key length. If you look at the link @shining-grimace posted, the user reported similar issues with many other JWT projects. For example, jwt/ruby-jwt#668 This issue is reported by security scanning tools like Snyk and it would be good to get it resolved (or marked as not a real security issue) so people don't think they have a security issue.

[bshaffer]

Happy to get it resolved if I can get a bit more information about the issue!

[ejunker]

@bshaffer some more info here jpadilla/pyjwt#1080 (comment)

[bshaffer]

Thank you @ejunker, that is very helpful!

From the above:

The "insufficient key length" seems to refer to the fact that [the library] does not enforce that a key... has "sufficient" length

IMHO this is far from being a high-severity vulnerability

So the fix would be to add validation for HMAC and RSA provided key lengths. It'd be nice if the vulnerability report provided information on what that validation should look like.

[brandanking-decently]

@bshaffer any update on if this will be resolved soon?