csaf_opensuse - opensuse-su-2024:13903-1

opensuse-su-2024:13903-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

teleport-15.2.4-1.1 on GA media

Notes

Title of the patch

teleport-15.2.4-1.1 on GA media

Description of the patch

These are all security issues fixed in the teleport-15.2.4-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-13903

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "teleport-15.2.4-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the teleport-15.2.4-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13903",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13903-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-45288 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-45288/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-29902 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-29902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-32650 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-32650/"
      }
    ],
    "title": "teleport-15.2.4-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13903-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "teleport-15.2.4-1.1.aarch64",
                "product": {
                  "name": "teleport-15.2.4-1.1.aarch64",
                  "product_id": "teleport-15.2.4-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tbot-15.2.4-1.1.aarch64",
                "product": {
                  "name": "teleport-tbot-15.2.4-1.1.aarch64",
                  "product_id": "teleport-tbot-15.2.4-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tctl-15.2.4-1.1.aarch64",
                "product": {
                  "name": "teleport-tctl-15.2.4-1.1.aarch64",
                  "product_id": "teleport-tctl-15.2.4-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tsh-15.2.4-1.1.aarch64",
                "product": {
                  "name": "teleport-tsh-15.2.4-1.1.aarch64",
                  "product_id": "teleport-tsh-15.2.4-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "teleport-15.2.4-1.1.ppc64le",
                "product": {
                  "name": "teleport-15.2.4-1.1.ppc64le",
                  "product_id": "teleport-15.2.4-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tbot-15.2.4-1.1.ppc64le",
                "product": {
                  "name": "teleport-tbot-15.2.4-1.1.ppc64le",
                  "product_id": "teleport-tbot-15.2.4-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tctl-15.2.4-1.1.ppc64le",
                "product": {
                  "name": "teleport-tctl-15.2.4-1.1.ppc64le",
                  "product_id": "teleport-tctl-15.2.4-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tsh-15.2.4-1.1.ppc64le",
                "product": {
                  "name": "teleport-tsh-15.2.4-1.1.ppc64le",
                  "product_id": "teleport-tsh-15.2.4-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "teleport-15.2.4-1.1.s390x",
                "product": {
                  "name": "teleport-15.2.4-1.1.s390x",
                  "product_id": "teleport-15.2.4-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tbot-15.2.4-1.1.s390x",
                "product": {
                  "name": "teleport-tbot-15.2.4-1.1.s390x",
                  "product_id": "teleport-tbot-15.2.4-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tctl-15.2.4-1.1.s390x",
                "product": {
                  "name": "teleport-tctl-15.2.4-1.1.s390x",
                  "product_id": "teleport-tctl-15.2.4-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tsh-15.2.4-1.1.s390x",
                "product": {
                  "name": "teleport-tsh-15.2.4-1.1.s390x",
                  "product_id": "teleport-tsh-15.2.4-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "teleport-15.2.4-1.1.x86_64",
                "product": {
                  "name": "teleport-15.2.4-1.1.x86_64",
                  "product_id": "teleport-15.2.4-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tbot-15.2.4-1.1.x86_64",
                "product": {
                  "name": "teleport-tbot-15.2.4-1.1.x86_64",
                  "product_id": "teleport-tbot-15.2.4-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tctl-15.2.4-1.1.x86_64",
                "product": {
                  "name": "teleport-tctl-15.2.4-1.1.x86_64",
                  "product_id": "teleport-tctl-15.2.4-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "teleport-tsh-15.2.4-1.1.x86_64",
                "product": {
                  "name": "teleport-tsh-15.2.4-1.1.x86_64",
                  "product_id": "teleport-tsh-15.2.4-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-15.2.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64"
        },
        "product_reference": "teleport-15.2.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-15.2.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le"
        },
        "product_reference": "teleport-15.2.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-15.2.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x"
        },
        "product_reference": "teleport-15.2.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-15.2.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64"
        },
        "product_reference": "teleport-15.2.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tbot-15.2.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64"
        },
        "product_reference": "teleport-tbot-15.2.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tbot-15.2.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le"
        },
        "product_reference": "teleport-tbot-15.2.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tbot-15.2.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x"
        },
        "product_reference": "teleport-tbot-15.2.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tbot-15.2.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64"
        },
        "product_reference": "teleport-tbot-15.2.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tctl-15.2.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64"
        },
        "product_reference": "teleport-tctl-15.2.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tctl-15.2.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le"
        },
        "product_reference": "teleport-tctl-15.2.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tctl-15.2.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x"
        },
        "product_reference": "teleport-tctl-15.2.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tctl-15.2.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64"
        },
        "product_reference": "teleport-tctl-15.2.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tsh-15.2.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64"
        },
        "product_reference": "teleport-tsh-15.2.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tsh-15.2.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le"
        },
        "product_reference": "teleport-tsh-15.2.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tsh-15.2.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x"
        },
        "product_reference": "teleport-tsh-15.2.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "teleport-tsh-15.2.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
        },
        "product_reference": "teleport-tsh-15.2.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-45288",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-45288"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-45288",
          "url": "https://www.suse.com/security/cve/CVE-2023-45288"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221400 for CVE-2023-45288",
          "url": "https://bugzilla.suse.com/1221400"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-45288"
    },
    {
      "cve": "CVE-2024-29902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-29902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as a Redis database which can result in data loss. It can also impact the availability of other services on the machine that will not be available for the duration of the machine denial. The root cause of this issue is that Cosign reads the attachment from a remote image entirely into memory without checking the size of the attachment first. As such, a large attachment can make Cosign read a large attachment into memory; If the attachments size is larger than the machine has memory available, the machine will be denied of service. The Go runtime will make a SigKill after a few seconds of system-wide denial. This issue can allow a supply-chain escalation from a compromised registry to the Cosign user: If an attacher has compromised a registry or the account of an image vendor, they can include a malicious attachment and hurt the image consumer. Version 2.2.4 contains a patch for the vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-29902",
          "url": "https://www.suse.com/security/cve/CVE-2024-29902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222835 for CVE-2024-29902",
          "url": "https://bugzilla.suse.com/1222835"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-29902"
    },
    {
      "cve": "CVE-2024-32650",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-32650"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server\u0027s `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
          "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-32650",
          "url": "https://www.suse.com/security/cve/CVE-2024-32650"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223211 for CVE-2024-32650",
          "url": "https://bugzilla.suse.com/1223211"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tbot-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tctl-15.2.4-1.1.x86_64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.aarch64",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.ppc64le",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.s390x",
            "openSUSE Tumbleweed:teleport-tsh-15.2.4-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-32650"
    }
  ]
}

CVE-2024-29902 (GCVE-0-2024-29902)

Vulnerability from cvelistv5

Published

2024-04-10 22:28

Modified

2024-08-02 01:17

Severity ?

4.2 (Medium) - CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Summary

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as a Redis database which can result in data loss. It can also impact the availability of other services on the machine that will not be available for the duration of the machine denial. The root cause of this issue is that Cosign reads the attachment from a remote image entirely into memory without checking the size of the attachment first. As such, a large attachment can make Cosign read a large attachment into memory; If the attachments size is larger than the machine has memory available, the machine will be denied of service. The Go runtime will make a SigKill after a few seconds of system-wide denial. This issue can allow a supply-chain escalation from a compromised registry to the Cosign user: If an attacher has compromised a registry or the account of an image vendor, they can include a malicious attachment and hurt the image consumer. Version 2.2.4 contains a patch for the vulnerability.

References

►

URL

Tags

	https://github.com/sigstore/cosign/security/advisories/GHSA-88jx-383q-w4qc	x_refsource_CONFIRM
	https://github.com/sigstore/cosign/commit/629f5f8fa672973503edde75f84dcd984637629e	x_refsource_MISC
	https://github.com/google/go-containerregistry/blob/a0658aa1d0cc7a7f1bcc4a3af9155335b6943f40/pkg/v1/remote/layer.go#L36-L40	x_refsource_MISC
	https://github.com/sigstore/cosign/blob/9bc3ee309bf35d2f6e17f5d23f231a3d8bf580bc/pkg/oci/remote/remote.go#L228-L239	x_refsource_MISC
	https://github.com/sigstore/cosign/releases/tag/v2.2.4	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	sigstore	cosign	Version: < 2.2.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:sigstore:cosign:0.1.0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "cosign",
            "vendor": "sigstore",
            "versions": [
              {
                "lessThan": "2.2.4",
                "status": "affected",
                "version": "0.1.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-29902",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-03T14:13:43.671206Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:57:24.059Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T01:17:58.609Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/sigstore/cosign/security/advisories/GHSA-88jx-383q-w4qc",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/sigstore/cosign/security/advisories/GHSA-88jx-383q-w4qc"
          },
          {
            "name": "https://github.com/sigstore/cosign/commit/629f5f8fa672973503edde75f84dcd984637629e",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/sigstore/cosign/commit/629f5f8fa672973503edde75f84dcd984637629e"
          },
          {
            "name": "https://github.com/google/go-containerregistry/blob/a0658aa1d0cc7a7f1bcc4a3af9155335b6943f40/pkg/v1/remote/layer.go#L36-L40",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/google/go-containerregistry/blob/a0658aa1d0cc7a7f1bcc4a3af9155335b6943f40/pkg/v1/remote/layer.go#L36-L40"
          },
          {
            "name": "https://github.com/sigstore/cosign/blob/9bc3ee309bf35d2f6e17f5d23f231a3d8bf580bc/pkg/oci/remote/remote.go#L228-L239",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/sigstore/cosign/blob/9bc3ee309bf35d2f6e17f5d23f231a3d8bf580bc/pkg/oci/remote/remote.go#L228-L239"
          },
          {
            "name": "https://github.com/sigstore/cosign/releases/tag/v2.2.4",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/sigstore/cosign/releases/tag/v2.2.4"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "cosign",
          "vendor": "sigstore",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 2.2.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as a Redis database which can result in data loss. It can also impact the availability of other services on the machine that will not be available for the duration of the machine denial. The root cause of this issue is that Cosign reads the attachment from a remote image entirely into memory without checking the size of the attachment first. As such, a large attachment can make Cosign read a large attachment into memory; If the attachments size is larger than the machine has memory available, the machine will be denied of service. The Go runtime will make a SigKill after a few seconds of system-wide denial. This issue can allow a supply-chain escalation from a compromised registry to the Cosign user: If an attacher has compromised a registry or the account of an image vendor, they can include a malicious attachment and hurt the image consumer. Version 2.2.4 contains a patch for the vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770: Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-10T22:28:19.788Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/sigstore/cosign/security/advisories/GHSA-88jx-383q-w4qc",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/sigstore/cosign/security/advisories/GHSA-88jx-383q-w4qc"
        },
        {
          "name": "https://github.com/sigstore/cosign/commit/629f5f8fa672973503edde75f84dcd984637629e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/sigstore/cosign/commit/629f5f8fa672973503edde75f84dcd984637629e"
        },
        {
          "name": "https://github.com/google/go-containerregistry/blob/a0658aa1d0cc7a7f1bcc4a3af9155335b6943f40/pkg/v1/remote/layer.go#L36-L40",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/google/go-containerregistry/blob/a0658aa1d0cc7a7f1bcc4a3af9155335b6943f40/pkg/v1/remote/layer.go#L36-L40"
        },
        {
          "name": "https://github.com/sigstore/cosign/blob/9bc3ee309bf35d2f6e17f5d23f231a3d8bf580bc/pkg/oci/remote/remote.go#L228-L239",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/sigstore/cosign/blob/9bc3ee309bf35d2f6e17f5d23f231a3d8bf580bc/pkg/oci/remote/remote.go#L228-L239"
        },
        {
          "name": "https://github.com/sigstore/cosign/releases/tag/v2.2.4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/sigstore/cosign/releases/tag/v2.2.4"
        }
      ],
      "source": {
        "advisory": "GHSA-88jx-383q-w4qc",
        "discovery": "UNKNOWN"
      },
      "title": "Cosign vulnerable to system-wide denial of service via malicious attachments"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-29902",
    "datePublished": "2024-04-10T22:28:19.788Z",
    "dateReserved": "2024-03-21T15:12:09.000Z",
    "dateUpdated": "2024-08-02T01:17:58.609Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-45288 (GCVE-0-2023-45288)

Vulnerability from cvelistv5

Published

2024-04-04 20:37

Modified

2025-02-13 17:14

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-400: Uncontrolled Resource Consumption

Summary

An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.

References

►

URL

Tags

	https://go.dev/issue/65051
	https://go.dev/cl/576155
	https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M
	https://pkg.go.dev/vuln/GO-2024-2687
	https://security.netapp.com/advisory/ntap-20240419-0009/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/
	http://www.openwall.com/lists/oss-security/2024/04/05/4
	http://www.openwall.com/lists/oss-security/2024/04/03/16

Impacted products

Vendor

Product

Version

►

Go standard library

net/http

Version: 0 ≤
Version: 1.22.0-0 ≤

golang.org/x/net

golang.org/x/net/http2

Version: 0 ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T20:21:15.329Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/65051"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/576155"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2024-2687"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240419-0009/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/04/05/4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/04/03/16"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:go_standard_library:net\\/http:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "net\\/http",
            "vendor": "go_standard_library",
            "versions": [
              {
                "lessThan": "1.21.9",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              },
              {
                "lessThan": "1.22.2",
                "status": "affected",
                "version": "1.22.0-0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:golang:http2:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "http2",
            "vendor": "golang",
            "versions": [
              {
                "lessThan": "0.23.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-45288",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-05T17:08:42.212936Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-26T20:40:01.996Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "net/http",
          "product": "net/http",
          "programRoutines": [
            {
              "name": "http2Framer.readMetaFrame"
            },
            {
              "name": "CanonicalHeaderKey"
            },
            {
              "name": "Client.CloseIdleConnections"
            },
            {
              "name": "Client.Do"
            },
            {
              "name": "Client.Get"
            },
            {
              "name": "Client.Head"
            },
            {
              "name": "Client.Post"
            },
            {
              "name": "Client.PostForm"
            },
            {
              "name": "Cookie.String"
            },
            {
              "name": "Cookie.Valid"
            },
            {
              "name": "Dir.Open"
            },
            {
              "name": "Error"
            },
            {
              "name": "Get"
            },
            {
              "name": "HandlerFunc.ServeHTTP"
            },
            {
              "name": "Head"
            },
            {
              "name": "Header.Add"
            },
            {
              "name": "Header.Del"
            },
            {
              "name": "Header.Get"
            },
            {
              "name": "Header.Set"
            },
            {
              "name": "Header.Values"
            },
            {
              "name": "Header.Write"
            },
            {
              "name": "Header.WriteSubset"
            },
            {
              "name": "ListenAndServe"
            },
            {
              "name": "ListenAndServeTLS"
            },
            {
              "name": "NewRequest"
            },
            {
              "name": "NewRequestWithContext"
            },
            {
              "name": "NotFound"
            },
            {
              "name": "ParseTime"
            },
            {
              "name": "Post"
            },
            {
              "name": "PostForm"
            },
            {
              "name": "ProxyFromEnvironment"
            },
            {
              "name": "ReadRequest"
            },
            {
              "name": "ReadResponse"
            },
            {
              "name": "Redirect"
            },
            {
              "name": "Request.AddCookie"
            },
            {
              "name": "Request.BasicAuth"
            },
            {
              "name": "Request.FormFile"
            },
            {
              "name": "Request.FormValue"
            },
            {
              "name": "Request.MultipartReader"
            },
            {
              "name": "Request.ParseForm"
            },
            {
              "name": "Request.ParseMultipartForm"
            },
            {
              "name": "Request.PostFormValue"
            },
            {
              "name": "Request.Referer"
            },
            {
              "name": "Request.SetBasicAuth"
            },
            {
              "name": "Request.UserAgent"
            },
            {
              "name": "Request.Write"
            },
            {
              "name": "Request.WriteProxy"
            },
            {
              "name": "Response.Cookies"
            },
            {
              "name": "Response.Location"
            },
            {
              "name": "Response.Write"
            },
            {
              "name": "ResponseController.EnableFullDuplex"
            },
            {
              "name": "ResponseController.Flush"
            },
            {
              "name": "ResponseController.Hijack"
            },
            {
              "name": "ResponseController.SetReadDeadline"
            },
            {
              "name": "ResponseController.SetWriteDeadline"
            },
            {
              "name": "Serve"
            },
            {
              "name": "ServeContent"
            },
            {
              "name": "ServeFile"
            },
            {
              "name": "ServeMux.ServeHTTP"
            },
            {
              "name": "ServeTLS"
            },
            {
              "name": "Server.Close"
            },
            {
              "name": "Server.ListenAndServe"
            },
            {
              "name": "Server.ListenAndServeTLS"
            },
            {
              "name": "Server.Serve"
            },
            {
              "name": "Server.ServeTLS"
            },
            {
              "name": "Server.SetKeepAlivesEnabled"
            },
            {
              "name": "Server.Shutdown"
            },
            {
              "name": "SetCookie"
            },
            {
              "name": "Transport.CancelRequest"
            },
            {
              "name": "Transport.Clone"
            },
            {
              "name": "Transport.CloseIdleConnections"
            },
            {
              "name": "Transport.RoundTrip"
            },
            {
              "name": "body.Close"
            },
            {
              "name": "body.Read"
            },
            {
              "name": "bodyEOFSignal.Close"
            },
            {
              "name": "bodyEOFSignal.Read"
            },
            {
              "name": "bodyLocked.Read"
            },
            {
              "name": "bufioFlushWriter.Write"
            },
            {
              "name": "cancelTimerBody.Close"
            },
            {
              "name": "cancelTimerBody.Read"
            },
            {
              "name": "checkConnErrorWriter.Write"
            },
            {
              "name": "chunkWriter.Write"
            },
            {
              "name": "connReader.Read"
            },
            {
              "name": "connectMethodKey.String"
            },
            {
              "name": "expectContinueReader.Close"
            },
            {
              "name": "expectContinueReader.Read"
            },
            {
              "name": "extraHeader.Write"
            },
            {
              "name": "fileHandler.ServeHTTP"
            },
            {
              "name": "fileTransport.RoundTrip"
            },
            {
              "name": "globalOptionsHandler.ServeHTTP"
            },
            {
              "name": "gzipReader.Close"
            },
            {
              "name": "gzipReader.Read"
            },
            {
              "name": "http2ClientConn.Close"
            },
            {
              "name": "http2ClientConn.Ping"
            },
            {
              "name": "http2ClientConn.RoundTrip"
            },
            {
              "name": "http2ClientConn.Shutdown"
            },
            {
              "name": "http2ConnectionError.Error"
            },
            {
              "name": "http2ErrCode.String"
            },
            {
              "name": "http2FrameHeader.String"
            },
            {
              "name": "http2FrameType.String"
            },
            {
              "name": "http2FrameWriteRequest.String"
            },
            {
              "name": "http2Framer.ReadFrame"
            },
            {
              "name": "http2Framer.WriteContinuation"
            },
            {
              "name": "http2Framer.WriteData"
            },
            {
              "name": "http2Framer.WriteDataPadded"
            },
            {
              "name": "http2Framer.WriteGoAway"
            },
            {
              "name": "http2Framer.WriteHeaders"
            },
            {
              "name": "http2Framer.WritePing"
            },
            {
              "name": "http2Framer.WritePriority"
            },
            {
              "name": "http2Framer.WritePushPromise"
            },
            {
              "name": "http2Framer.WriteRSTStream"
            },
            {
              "name": "http2Framer.WriteRawFrame"
            },
            {
              "name": "http2Framer.WriteSettings"
            },
            {
              "name": "http2Framer.WriteSettingsAck"
            },
            {
              "name": "http2Framer.WriteWindowUpdate"
            },
            {
              "name": "http2GoAwayError.Error"
            },
            {
              "name": "http2Server.ServeConn"
            },
            {
              "name": "http2Setting.String"
            },
            {
              "name": "http2SettingID.String"
            },
            {
              "name": "http2SettingsFrame.ForeachSetting"
            },
            {
              "name": "http2StreamError.Error"
            },
            {
              "name": "http2Transport.CloseIdleConnections"
            },
            {
              "name": "http2Transport.NewClientConn"
            },
            {
              "name": "http2Transport.RoundTrip"
            },
            {
              "name": "http2Transport.RoundTripOpt"
            },
            {
              "name": "http2bufferedWriter.Flush"
            },
            {
              "name": "http2bufferedWriter.Write"
            },
            {
              "name": "http2chunkWriter.Write"
            },
            {
              "name": "http2clientConnPool.GetClientConn"
            },
            {
              "name": "http2connError.Error"
            },
            {
              "name": "http2dataBuffer.Read"
            },
            {
              "name": "http2duplicatePseudoHeaderError.Error"
            },
            {
              "name": "http2gzipReader.Close"
            },
            {
              "name": "http2gzipReader.Read"
            },
            {
              "name": "http2headerFieldNameError.Error"
            },
            {
              "name": "http2headerFieldValueError.Error"
            },
            {
              "name": "http2noDialClientConnPool.GetClientConn"
            },
            {
              "name": "http2noDialH2RoundTripper.RoundTrip"
            },
            {
              "name": "http2pipe.Read"
            },
            {
              "name": "http2priorityWriteScheduler.CloseStream"
            },
            {
              "name": "http2priorityWriteScheduler.OpenStream"
            },
            {
              "name": "http2pseudoHeaderError.Error"
            },
            {
              "name": "http2requestBody.Close"
            },
            {
              "name": "http2requestBody.Read"
            },
            {
              "name": "http2responseWriter.Flush"
            },
            {
              "name": "http2responseWriter.FlushError"
            },
            {
              "name": "http2responseWriter.Push"
            },
            {
              "name": "http2responseWriter.SetReadDeadline"
            },
            {
              "name": "http2responseWriter.SetWriteDeadline"
            },
            {
              "name": "http2responseWriter.Write"
            },
            {
              "name": "http2responseWriter.WriteHeader"
            },
            {
              "name": "http2responseWriter.WriteString"
            },
            {
              "name": "http2roundRobinWriteScheduler.OpenStream"
            },
            {
              "name": "http2serverConn.CloseConn"
            },
            {
              "name": "http2serverConn.Flush"
            },
            {
              "name": "http2stickyErrWriter.Write"
            },
            {
              "name": "http2transportResponseBody.Close"
            },
            {
              "name": "http2transportResponseBody.Read"
            },
            {
              "name": "http2writeData.String"
            },
            {
              "name": "initALPNRequest.ServeHTTP"
            },
            {
              "name": "loggingConn.Close"
            },
            {
              "name": "loggingConn.Read"
            },
            {
              "name": "loggingConn.Write"
            },
            {
              "name": "maxBytesReader.Close"
            },
            {
              "name": "maxBytesReader.Read"
            },
            {
              "name": "onceCloseListener.Close"
            },
            {
              "name": "persistConn.Read"
            },
            {
              "name": "persistConnWriter.ReadFrom"
            },
            {
              "name": "persistConnWriter.Write"
            },
            {
              "name": "populateResponse.Write"
            },
            {
              "name": "populateResponse.WriteHeader"
            },
            {
              "name": "readTrackingBody.Close"
            },
            {
              "name": "readTrackingBody.Read"
            },
            {
              "name": "readWriteCloserBody.Read"
            },
            {
              "name": "redirectHandler.ServeHTTP"
            },
            {
              "name": "response.Flush"
            },
            {
              "name": "response.FlushError"
            },
            {
              "name": "response.Hijack"
            },
            {
              "name": "response.ReadFrom"
            },
            {
              "name": "response.Write"
            },
            {
              "name": "response.WriteHeader"
            },
            {
              "name": "response.WriteString"
            },
            {
              "name": "serverHandler.ServeHTTP"
            },
            {
              "name": "socksDialer.DialWithConn"
            },
            {
              "name": "socksUsernamePassword.Authenticate"
            },
            {
              "name": "stringWriter.WriteString"
            },
            {
              "name": "timeoutHandler.ServeHTTP"
            },
            {
              "name": "timeoutWriter.Write"
            },
            {
              "name": "timeoutWriter.WriteHeader"
            },
            {
              "name": "transportReadFromServerError.Error"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.21.9",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "1.22.2",
              "status": "affected",
              "version": "1.22.0-0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "golang.org/x/net/http2",
          "product": "golang.org/x/net/http2",
          "programRoutines": [
            {
              "name": "Framer.readMetaFrame"
            },
            {
              "name": "ClientConn.Close"
            },
            {
              "name": "ClientConn.Ping"
            },
            {
              "name": "ClientConn.RoundTrip"
            },
            {
              "name": "ClientConn.Shutdown"
            },
            {
              "name": "ConfigureServer"
            },
            {
              "name": "ConfigureTransport"
            },
            {
              "name": "ConfigureTransports"
            },
            {
              "name": "ConnectionError.Error"
            },
            {
              "name": "ErrCode.String"
            },
            {
              "name": "FrameHeader.String"
            },
            {
              "name": "FrameType.String"
            },
            {
              "name": "FrameWriteRequest.String"
            },
            {
              "name": "Framer.ReadFrame"
            },
            {
              "name": "Framer.WriteContinuation"
            },
            {
              "name": "Framer.WriteData"
            },
            {
              "name": "Framer.WriteDataPadded"
            },
            {
              "name": "Framer.WriteGoAway"
            },
            {
              "name": "Framer.WriteHeaders"
            },
            {
              "name": "Framer.WritePing"
            },
            {
              "name": "Framer.WritePriority"
            },
            {
              "name": "Framer.WritePushPromise"
            },
            {
              "name": "Framer.WriteRSTStream"
            },
            {
              "name": "Framer.WriteRawFrame"
            },
            {
              "name": "Framer.WriteSettings"
            },
            {
              "name": "Framer.WriteSettingsAck"
            },
            {
              "name": "Framer.WriteWindowUpdate"
            },
            {
              "name": "GoAwayError.Error"
            },
            {
              "name": "ReadFrameHeader"
            },
            {
              "name": "Server.ServeConn"
            },
            {
              "name": "Setting.String"
            },
            {
              "name": "SettingID.String"
            },
            {
              "name": "SettingsFrame.ForeachSetting"
            },
            {
              "name": "StreamError.Error"
            },
            {
              "name": "Transport.CloseIdleConnections"
            },
            {
              "name": "Transport.NewClientConn"
            },
            {
              "name": "Transport.RoundTrip"
            },
            {
              "name": "Transport.RoundTripOpt"
            },
            {
              "name": "bufferedWriter.Flush"
            },
            {
              "name": "bufferedWriter.Write"
            },
            {
              "name": "chunkWriter.Write"
            },
            {
              "name": "clientConnPool.GetClientConn"
            },
            {
              "name": "connError.Error"
            },
            {
              "name": "dataBuffer.Read"
            },
            {
              "name": "duplicatePseudoHeaderError.Error"
            },
            {
              "name": "gzipReader.Close"
            },
            {
              "name": "gzipReader.Read"
            },
            {
              "name": "headerFieldNameError.Error"
            },
            {
              "name": "headerFieldValueError.Error"
            },
            {
              "name": "noDialClientConnPool.GetClientConn"
            },
            {
              "name": "noDialH2RoundTripper.RoundTrip"
            },
            {
              "name": "pipe.Read"
            },
            {
              "name": "priorityWriteScheduler.CloseStream"
            },
            {
              "name": "priorityWriteScheduler.OpenStream"
            },
            {
              "name": "pseudoHeaderError.Error"
            },
            {
              "name": "requestBody.Close"
            },
            {
              "name": "requestBody.Read"
            },
            {
              "name": "responseWriter.Flush"
            },
            {
              "name": "responseWriter.FlushError"
            },
            {
              "name": "responseWriter.Push"
            },
            {
              "name": "responseWriter.SetReadDeadline"
            },
            {
              "name": "responseWriter.SetWriteDeadline"
            },
            {
              "name": "responseWriter.Write"
            },
            {
              "name": "responseWriter.WriteHeader"
            },
            {
              "name": "responseWriter.WriteString"
            },
            {
              "name": "roundRobinWriteScheduler.OpenStream"
            },
            {
              "name": "serverConn.CloseConn"
            },
            {
              "name": "serverConn.Flush"
            },
            {
              "name": "stickyErrWriter.Write"
            },
            {
              "name": "transportResponseBody.Close"
            },
            {
              "name": "transportResponseBody.Read"
            },
            {
              "name": "writeData.String"
            }
          ],
          "vendor": "golang.org/x/net",
          "versions": [
            {
              "lessThan": "0.23.0",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Bartek Nowotarski (https://nowotarski.info/)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-01T17:10:07.754Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/65051"
        },
        {
          "url": "https://go.dev/cl/576155"
        },
        {
          "url": "https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2024-2687"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240419-0009/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2024/04/05/4"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2024/04/03/16"
        }
      ],
      "title": "HTTP/2 CONTINUATION flood in net/http"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-45288",
    "datePublished": "2024-04-04T20:37:30.714Z",
    "dateReserved": "2023-10-06T17:06:26.221Z",
    "dateUpdated": "2025-02-13T17:14:01.156Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-32650 (GCVE-0-2024-32650)

Vulnerability from cvelistv5

Published

2024-04-19 16:05

Modified

2024-08-02 02:13

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Summary

Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11.

References

►

URL

Tags

	https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj	x_refsource_CONFIRM
	https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d	x_refsource_MISC
	https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e	x_refsource_MISC
	https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	rustls	rustls	Version: >= 0.23.0, < 0.23.5 Version: >= 0.22.0, < 0.22.4 Version: >= 0.21.0, < 0.21.11 Version: = 0.20.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:rustls_project:rustls:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "rustls",
            "vendor": "rustls_project",
            "versions": [
              {
                "status": "unknown",
                "version": "0.21.11"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-32650",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-22T15:34:25.994212Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:50.274Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T02:13:40.195Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"
          },
          {
            "name": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"
          },
          {
            "name": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"
          },
          {
            "name": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "rustls",
          "vendor": "rustls",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 0.23.0, \u003c 0.23.5"
            },
            {
              "status": "affected",
              "version": "\u003e= 0.22.0, \u003c 0.22.4"
            },
            {
              "status": "affected",
              "version": "\u003e= 0.21.0, \u003c 0.21.11"
            },
            {
              "status": "affected",
              "version": "= 0.20.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server\u0027s `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-835",
              "description": "CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-19T19:47:45.579Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"
        },
        {
          "name": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"
        },
        {
          "name": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"
        },
        {
          "name": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"
        }
      ],
      "source": {
        "advisory": "GHSA-6g7w-8wpp-frhj",
        "discovery": "UNKNOWN"
      },
      "title": "Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-32650",
    "datePublished": "2024-04-19T16:05:44.050Z",
    "dateReserved": "2024-04-16T14:15:26.876Z",
    "dateUpdated": "2024-08-02T02:13:40.195Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

opensuse-su-2024:13903-1

Vulnerability from csaf_opensuse

CVE-2024-29902 (GCVE-0-2024-29902)

Vulnerability from cvelistv5

CVE-2023-45288 (GCVE-0-2023-45288)

Vulnerability from cvelistv5

CVE-2024-32650 (GCVE-0-2024-32650)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature