RUSTSEC-2024-0354: 
Rust vulnerability analysis and mitigation

A security vulnerability (RUSTSEC-2024-0354, CVE-2024-40640) was discovered in the vodozemac Rust package affecting versions prior to 0.7.0. The vulnerability involves the usage of a non-constant time base64 decoder that could potentially lead to the leakage of secret key material when importing key material for Megolm group sessions and PkDecryption Ed25519 secret keys (GitHub Advisory).

The vulnerability stems from the implementation of base64 operations that do not maintain constant-time execution, potentially exposing timing variations during encoding and decoding operations of secret key material. The severity of this vulnerability is rated as Low, as exploitation requires specific conditions including access to high-precision timing measurements and repeated access to the base64 encoding or decoding processes (GitHub Advisory).

The vulnerability could allow attackers to observe timing variations in the encoding and decoding operations of the secret key material, potentially providing insights into the underlying secret key material. However, the estimated leakage amount is bounded and considered low according to research findings (GitHub Advisory).

The vulnerability has been patched in version 0.7.0 of vodozemac, with the fix implemented in commit 734b6c6. No workarounds are available for affected versions, making upgrading to version 0.7.0 or later the only mitigation option (GitHub Advisory).

The vulnerability was responsibly disclosed, with credit given to Soatok for pointing out the relevant research. The Matrix.org security team has provided contact information (security@matrix.org) for further inquiries about this advisory (GitHub Advisory).