Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2021-24032
Vulnerability from cvelistv5
Published
2021-03-04 20:15
Modified
2024-08-03 19:21
Severity ?
EPSS score ?
Summary
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| cve-assign@fb.com | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519 | Patch, Third Party Advisory | |
| cve-assign@fb.com | https://github.com/facebook/zstd/issues/2491 | Issue Tracking, Patch, Third Party Advisory | |
| cve-assign@fb.com | https://www.facebook.com/security/advisories/cve-2021-24032 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/facebook/zstd/issues/2491 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.facebook.com/security/advisories/cve-2021-24032 | Third Party Advisory |
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T19:21:17.115Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/facebook/zstd/issues/2491", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Zstandard", vendor: "Facebook", versions: [ { lessThan: "unspecified", status: "unaffected", version: "1.4.9", versionType: "custom", }, { lessThan: "unspecified", status: "affected", version: "1.4.1", versionType: "custom", }, { lessThan: "1.4.1", status: "unaffected", version: "unspecified", versionType: "custom", }, ], }, ], dateAssigned: "2021-03-01T00:00:00", descriptions: [ { lang: "en", value: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-277", description: "Insecure Inherited Permissions (CWE-277)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-03-04T20:15:21", orgId: "4fc57720-52fe-4431-a0fb-3d2c8747b827", shortName: "facebook", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://github.com/facebook/zstd/issues/2491", }, { tags: [ "x_refsource_MISC", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { tags: [ "x_refsource_MISC", ], url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve-assign@fb.com", DATE_ASSIGNED: "2021-03-01", ID: "CVE-2021-24032", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Zstandard", version: { version_data: [ { version_affected: "!>=", version_value: "1.4.9", }, { version_affected: ">=", version_value: "1.4.1", }, { version_affected: "!<", version_value: "1.4.1", }, ], }, }, ], }, vendor_name: "Facebook", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Insecure Inherited Permissions (CWE-277)", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/facebook/zstd/issues/2491", refsource: "MISC", url: "https://github.com/facebook/zstd/issues/2491", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", refsource: "MISC", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { name: "https://www.facebook.com/security/advisories/cve-2021-24032", refsource: "MISC", url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "4fc57720-52fe-4431-a0fb-3d2c8747b827", assignerShortName: "facebook", cveId: "CVE-2021-24032", datePublished: "2021-03-04T20:15:21", dateReserved: "2021-01-13T00:00:00", dateUpdated: "2024-08-03T19:21:17.115Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:facebook:zstandard:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.4.1\", \"versionEndExcluding\": \"1.4.9\", \"matchCriteriaId\": \"D09560DA-1F1B-41AA-B96F-DABEE82C04D0\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.\"}, {\"lang\": \"es\", \"value\": \"A partir de la versi\\u00f3n v1.4.1 y anterior a la v1.4.9, debido a una soluci\\u00f3n incompleta para el CVE-2021-24031, la utilidad de l\\u00ednea de comandos Zstandard cre\\u00f3 archivos de salida con permisos predeterminados y restringi\\u00f3 esos permisos inmediatamente despu\\u00e9s. Por lo tanto, los archivos de salida podr\\u00edan ser moment\\u00e1neamente legibles o escribibles para personas no deseadas\"}]", id: "CVE-2021-24032", lastModified: "2024-11-21T05:52:14.943", metrics: "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 4.7, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.0, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:P/I:N/A:N\", \"baseScore\": 1.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.4, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2021-03-04T21:15:12.963", references: "[{\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519\", \"source\": \"cve-assign@fb.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/facebook/zstd/issues/2491\", \"source\": \"cve-assign@fb.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.facebook.com/security/advisories/cve-2021-24032\", \"source\": \"cve-assign@fb.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/facebook/zstd/issues/2491\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.facebook.com/security/advisories/cve-2021-24032\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]", sourceIdentifier: "cve-assign@fb.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"cve-assign@fb.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-277\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-276\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2021-24032\",\"sourceIdentifier\":\"cve-assign@fb.com\",\"published\":\"2021-03-04T21:15:12.963\",\"lastModified\":\"2024-11-21T05:52:14.943\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.\"},{\"lang\":\"es\",\"value\":\"A partir de la versión v1.4.1 y anterior a la v1.4.9, debido a una solución incompleta para el CVE-2021-24031, la utilidad de línea de comandos Zstandard creó archivos de salida con permisos predeterminados y restringió esos permisos inmediatamente después. Por lo tanto, los archivos de salida podrían ser momentáneamente legibles o escribibles para personas no deseadas\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":4.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.0,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:P/I:N/A:N\",\"baseScore\":1.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.4,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"cve-assign@fb.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-277\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-276\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:facebook:zstandard:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.4.1\",\"versionEndExcluding\":\"1.4.9\",\"matchCriteriaId\":\"D09560DA-1F1B-41AA-B96F-DABEE82C04D0\"}]}]}],\"references\":[{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519\",\"source\":\"cve-assign@fb.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/facebook/zstd/issues/2491\",\"source\":\"cve-assign@fb.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.facebook.com/security/advisories/cve-2021-24032\",\"source\":\"cve-assign@fb.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/facebook/zstd/issues/2491\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.facebook.com/security/advisories/cve-2021-24032\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
rhsa-2024_3527
Vulnerability from csaf_redhat
Published
2024-05-30 20:24
Modified
2024-12-17 08:36
Summary
Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update
Notes
Topic
Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency.
This release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.
Security Fix(es):
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)
* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)
* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)
* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)
* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)
* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)
* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)
* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)
* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)
* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)
* guava: insecure temporary directory creation (CVE-2023-2976)
* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)
* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)
* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. \n\nThis release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.\n\nSecurity Fix(es):\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)\n* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)\n* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)\n* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)\n* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)\n* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)\n* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)\n* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)\n* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)\n* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)\n* guava: insecure temporary directory creation (CVE-2023-2976)\n* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)\n* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)\n* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:3527", url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "ENTMQST-5619", url: "https://issues.redhat.com/browse/ENTMQST-5619", }, { category: "external", summary: "ENTMQST-5881", url: "https://issues.redhat.com/browse/ENTMQST-5881", }, { category: "external", summary: "ENTMQST-5882", url: "https://issues.redhat.com/browse/ENTMQST-5882", }, { category: "external", summary: "ENTMQST-5883", url: "https://issues.redhat.com/browse/ENTMQST-5883", }, { category: "external", summary: "ENTMQST-5884", url: "https://issues.redhat.com/browse/ENTMQST-5884", }, { category: "external", summary: "ENTMQST-5885", url: "https://issues.redhat.com/browse/ENTMQST-5885", }, { category: "external", summary: "ENTMQST-5886", url: "https://issues.redhat.com/browse/ENTMQST-5886", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_3527.json", }, ], title: "Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update", tracking: { current_release_date: "2024-12-17T08:36:55+00:00", generator: { date: "2024-12-17T08:36:55+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2024:3527", initial_release_date: "2024-05-30T20:24:46+00:00", revision_history: [ { date: "2024-05-30T20:24:46+00:00", number: "1", summary: "Initial version", }, { date: "2024-06-25T17:26:45+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-17T08:36:55+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat AMQ Streams 2.7.0", product: { name: "Red Hat AMQ Streams 2.7.0", product_id: "Red Hat AMQ Streams 2.7.0", product_identification_helper: { cpe: "cpe:/a:redhat:amq_streams:2", }, }, }, ], category: "product_family", name: "Streams for Apache Kafka", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-24032", cwe: { id: "CWE-281", name: "Improper Preservation of Permissions", }, discovery_date: "2021-02-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1928090", }, ], notes: [ { category: "description", text: "A flaw was found in zstd. While the final file mode is reflective of the input file, when compressing or uncompressing, the file can temporarily gain greater permissions than the input and potentially leading to security issues (especially if large files are being handled).", title: "Vulnerability description", }, { category: "summary", text: "zstd: Race condition allows attacker to access world-readable destination file", title: "Vulnerability summary", }, { category: "other", text: "In OpenShift Container Platform (OCP) the zstd package was delivered in OCP 4.3 which is already end of life.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-24032", }, { category: "external", summary: "RHBZ#1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-24032", url: "https://www.cve.org/CVERecord?id=CVE-2021-24032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", }, ], release_date: "2021-02-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "zstd: Race condition allows attacker to access world-readable destination file", }, { cve: "CVE-2022-3171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2022-10-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2137645", }, ], notes: [ { category: "description", text: "A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted back-n-forth between mutable and immutable forms, resulting in potentially long garbage collection pauses. We recommend updating to the versions mentioned above.", title: "Vulnerability description", }, { category: "summary", text: "protobuf-java: timeout in parser leads to DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-3171", }, { category: "external", summary: "RHBZ#2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-3171", url: "https://www.cve.org/CVERecord?id=CVE-2022-3171", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", }, { category: "external", summary: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", url: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", }, ], release_date: "2022-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "protobuf-java: timeout in parser leads to DoS", }, { cve: "CVE-2022-4899", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-01-31T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2179864", }, ], notes: [ { category: "description", text: "A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun.", title: "Vulnerability description", }, { category: "summary", text: "zstd: mysql: buffer overrun in util.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-4899", }, { category: "external", summary: "RHBZ#2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-4899", url: "https://www.cve.org/CVERecord?id=CVE-2022-4899", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", }, ], release_date: "2022-07-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "zstd: mysql: buffer overrun in util.c", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-42920", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2022-11-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2142707", }, ], notes: [ { category: "description", text: "An out-of-bounds (OOB) write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected.", title: "Vulnerability description", }, { category: "summary", text: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", title: "Vulnerability summary", }, { category: "other", text: "Fuse 7 ships the code in question but does not utilize it in the product, so it is affected at a reduced impact of Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42920", }, { category: "external", summary: "RHBZ#2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42920", url: "https://www.cve.org/CVERecord?id=CVE-2022-42920", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", }, { category: "external", summary: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", url: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", }, ], release_date: "2022-11-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", }, { cve: "CVE-2023-1370", cwe: { id: "CWE-674", name: "Uncontrolled Recursion", }, discovery_date: "2023-04-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2188542", }, ], notes: [ { category: "description", text: "A flaw was found in the json-smart package. This security flaw occurs when reaching a ‘[‘ or ‘{‘ character in the JSON input, and the code parses an array or an object, respectively. The 3PP does not have any limit to the nesting of such arrays or objects. Since nested arrays and objects are parsed recursively, nesting too many of them can cause stack exhaustion (stack overflow) and crash the software.", title: "Vulnerability description", }, { category: "summary", text: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-1370", }, { category: "external", summary: "RHBZ#2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-1370", url: "https://www.cve.org/CVERecord?id=CVE-2023-1370", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", }, { category: "external", summary: "https://github.com/advisories/GHSA-493p-pfq6-5258", url: "https://github.com/advisories/GHSA-493p-pfq6-5258", }, { category: "external", summary: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", url: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", }, ], release_date: "2023-03-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", }, { cve: "CVE-2023-2976", cwe: { id: "CWE-552", name: "Files or Directories Accessible to External Parties", }, discovery_date: "2023-06-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215229", }, ], notes: [ { category: "description", text: "A flaw was found in Guava. The methodology for temporary directories and files can allow other local users or apps with accordant permissions to access the temp files, possibly leading to information exposure or tampering in the files created in the directory.", title: "Vulnerability description", }, { category: "summary", text: "guava: insecure temporary directory creation", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Single Sign-On 7 ships the affected component as a layered product of Red Hat JBoss Enterprise Application 7, and as such is affected by this flaw. However, Single Sign-On 7 does not use the affected code and is not vulnerable to exploit.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-2976", }, { category: "external", summary: "RHBZ#2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-2976", url: "https://www.cve.org/CVERecord?id=CVE-2023-2976", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Temp files should be created with sufficiently non-predictable names and in a secure-permissioned, dedicated temp folder.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "guava: insecure temporary directory creation", }, { cve: "CVE-2023-33201", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215465", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle 1.73. This issue targets the fix of LDAP wild cards. Before the fix there was no validation for the X.500 name of any certificate, subject, or issuer, so the presence of a wild card may lead to information disclosure. This could allow a malicious user to obtain unauthorized information via blind LDAP Injection, exploring the environment and enumerating data. The exploit depends on the structure of the target LDAP directory as well as what kind of errors are exposed to the user.", title: "Vulnerability description", }, { category: "summary", text: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33201", }, { category: "external", summary: "RHBZ#2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33201", url: "https://www.cve.org/CVERecord?id=CVE-2023-33201", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", }, ], release_date: "2023-06-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", }, { cve: "CVE-2023-33202", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-11-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2251281", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle for the Java pkix module, which is vulnerable to a potential Denial of Service (DoS) issue within the org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafted ASN.1 data through the PEMParser causes an OutOfMemoryError, which can enable a denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33202", }, { category: "external", summary: "RHBZ#2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33202", url: "https://www.cve.org/CVERecord?id=CVE-2023-33202", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", }, ], release_date: "2023-11-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", }, { cve: "CVE-2023-43642", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2023-09-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2241722", }, ], notes: [ { category: "description", text: "A flaw was found in SnappyInputStream in snappy-java, a data compression library in Java. This issue occurs when decompressing data with a too-large chunk size due to a missing upper bound check on chunk length. An unrecoverable fatal error can occur, resulting in a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-43642", }, { category: "external", summary: "RHBZ#2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-43642", url: "https://www.cve.org/CVERecord?id=CVE-2023-43642", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", }, { category: "external", summary: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", url: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", }, ], release_date: "2023-09-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", }, { cve: "CVE-2023-51074", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, discovery_date: "2023-12-28T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2256063", }, ], notes: [ { category: "description", text: "A stack overflow vulnerability was found in the Criteria.parse() method in json-path. This issue occurs due to an uncontrolled recursion caused by specially crafted input, leading to a stack overflow. This vulnerability has the potential to trigger a crash, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "json-path: stack-based buffer overflow in Criteria.parse method", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this at maximum of a Moderate impact. When interacting with a server to explore this possible vulnerability, the attacker would be the only one seeing a HTTP 500 error and no other user (or the server entirely) would be vulnerable in a real application scenario with multi-threads.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-51074", }, { category: "external", summary: "RHBZ#2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-51074", url: "https://www.cve.org/CVERecord?id=CVE-2023-51074", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", }, { category: "external", summary: "https://github.com/json-path/JsonPath/issues/973", url: "https://github.com/json-path/JsonPath/issues/973", }, ], release_date: "2023-12-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "json-path: stack-based buffer overflow in Criteria.parse method", }, { cve: "CVE-2024-1023", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-01-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2260840", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit results in a memory leak due to using Netty FastThreadLocal data structures. Specifically, when the Vert.x HTTP client establishes connections to different hosts, triggering the memory leak. The leak can be accelerated with intimate runtime knowledge, allowing an attacker to exploit this vulnerability. For instance, a server accepting arbitrary internet addresses could serve as an attack vector by connecting to these addresses, thereby accelerating the memory leak.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1023", }, { category: "external", summary: "RHBZ#2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1023", url: "https://www.cve.org/CVERecord?id=CVE-2024-1023", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/issues/5078", url: "https://github.com/eclipse-vertx/vert.x/issues/5078", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5080", url: "https://github.com/eclipse-vertx/vert.x/pull/5080", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5082", url: "https://github.com/eclipse-vertx/vert.x/pull/5082", }, ], release_date: "2024-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", }, { cve: "CVE-2024-1300", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2263139", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading to memory exhaustion. This flaw allows attackers to send TLS client hello messages with fake server names, triggering a JVM out-of-memory error.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", title: "Vulnerability summary", }, { category: "other", text: "This affects only TLS servers with SNI enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1300", }, { category: "external", summary: "RHBZ#2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1300", url: "https://www.cve.org/CVERecord?id=CVE-2024-1300", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", }, { category: "external", summary: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", url: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", }, ], release_date: "2024-02-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", }, { cve: "CVE-2024-2700", cwe: { id: "CWE-526", name: "Cleartext Storage of Sensitive Information in an Environment Variable", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2273281", }, ], notes: [ { category: "description", text: "A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been set by the developer or CI environment for testing purposes, such as dropping the database during application startup or trusting all TLS certificates to accept self-signed certificates. If these properties are configured using environment variables or the .env facility, they are captured into the built application, which can lead to dangerous behavior if the application does not override these values. This behavior only happens for configuration properties from the `quarkus.*` namespace. Application-specific properties are not captured.", title: "Vulnerability description", }, { category: "summary", text: "quarkus-core: Leak of local configuration properties into Quarkus applications", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this as a Moderate impact vulnerability since this requires an attacker to have direct access to the environment variables to override, and the application must use that environment variable to be jeopardized.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-2700", }, { category: "external", summary: "RHBZ#2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-2700", url: "https://www.cve.org/CVERecord?id=CVE-2024-2700", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", }, ], release_date: "2024-04-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Currently, no mitigation is available for this vulnerability. Please update as the patches become available.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus-core: Leak of local configuration properties into Quarkus applications", }, { cve: "CVE-2024-25710", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2024-02-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2264988", }, ], notes: [ { category: "description", text: "A loop with an unreachable exit condition (Infinite Loop) vulnerability was found in Apache Common Compress. This issue can lead to a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-25710", }, { category: "external", summary: "RHBZ#2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-25710", url: "https://www.cve.org/CVERecord?id=CVE-2024-25710", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2024/02/19/1", url: "http://www.openwall.com/lists/oss-security/2024/02/19/1", }, { category: "external", summary: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", url: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", }, ], release_date: "2024-02-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "No mitigation is currently available for this vulnerability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", }, { cve: "CVE-2024-29025", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2272907", }, ], notes: [ { category: "description", text: "A flaw was found in the io.netty:netty-codec-http package. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling issues due to the accumulation of data in the HttpPostRequestDecoder. The decoder cumulates bytes in the undecodedChunk buffer until it can decode a field, allowing data to accumulate without limits. This flaw allows an attacker to cause a denial of service by sending a chunked post consisting of many small fields that will be accumulated in the bodyListHttpData list.", title: "Vulnerability description", }, { category: "summary", text: "netty-codec-http: Allocation of Resources Without Limits or Throttling", title: "Vulnerability summary", }, { category: "other", text: "The vulnerability in io.netty:netty-codec-http, allowing for Allocation of Resources Without Limits or Throttling issues, is assessed as moderate severity due to its potential impact on system availability and performance. By exploiting the flaw in HttpPostRequestDecoder, an attacker can craft chunked POST requests with numerous small fields, causing excessive accumulation of data in memory buffers. This unrestricted accumulation can lead to significant memory consumption on the server, potentially exhausting available resources and resulting in denial of service (DoS) conditions.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-29025", }, { category: "external", summary: "RHBZ#2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-29025", url: "https://www.cve.org/CVERecord?id=CVE-2024-29025", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", }, { category: "external", summary: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", url: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", }, { category: "external", summary: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", url: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", }, { category: "external", summary: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", url: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", }, { category: "external", summary: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", url: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", }, ], release_date: "2024-03-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "netty-codec-http: Allocation of Resources Without Limits or Throttling", }, ], }
RHSA-2024:3527
Vulnerability from csaf_redhat
Published
2024-05-30 20:24
Modified
2025-03-15 04:02
Summary
Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update
Notes
Topic
Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency.
This release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.
Security Fix(es):
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)
* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)
* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)
* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)
* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)
* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)
* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)
* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)
* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)
* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)
* guava: insecure temporary directory creation (CVE-2023-2976)
* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)
* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)
* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. \n\nThis release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.\n\nSecurity Fix(es):\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)\n* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)\n* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)\n* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)\n* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)\n* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)\n* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)\n* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)\n* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)\n* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)\n* guava: insecure temporary directory creation (CVE-2023-2976)\n* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)\n* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)\n* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:3527", url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "ENTMQST-5619", url: "https://issues.redhat.com/browse/ENTMQST-5619", }, { category: "external", summary: "ENTMQST-5881", url: "https://issues.redhat.com/browse/ENTMQST-5881", }, { category: "external", summary: "ENTMQST-5882", url: "https://issues.redhat.com/browse/ENTMQST-5882", }, { category: "external", summary: "ENTMQST-5883", url: "https://issues.redhat.com/browse/ENTMQST-5883", }, { category: "external", summary: "ENTMQST-5884", url: "https://issues.redhat.com/browse/ENTMQST-5884", }, { category: "external", summary: "ENTMQST-5885", url: "https://issues.redhat.com/browse/ENTMQST-5885", }, { category: "external", summary: "ENTMQST-5886", url: "https://issues.redhat.com/browse/ENTMQST-5886", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_3527.json", }, ], title: "Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update", tracking: { current_release_date: "2025-03-15T04:02:14+00:00", generator: { date: "2025-03-15T04:02:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2024:3527", initial_release_date: "2024-05-30T20:24:46+00:00", revision_history: [ { date: "2024-05-30T20:24:46+00:00", number: "1", summary: "Initial version", }, { date: "2024-06-25T17:26:45+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-15T04:02:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat AMQ Streams 2.7.0", product: { name: "Red Hat AMQ Streams 2.7.0", product_id: "Red Hat AMQ Streams 2.7.0", product_identification_helper: { cpe: "cpe:/a:redhat:amq_streams:2", }, }, }, ], category: "product_family", name: "Streams for Apache Kafka", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-24032", cwe: { id: "CWE-281", name: "Improper Preservation of Permissions", }, discovery_date: "2021-02-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1928090", }, ], notes: [ { category: "description", text: "A flaw was found in zstd. While the final file mode is reflective of the input file, when compressing or uncompressing, the file can temporarily gain greater permissions than the input and potentially leading to security issues (especially if large files are being handled).", title: "Vulnerability description", }, { category: "summary", text: "zstd: Race condition allows attacker to access world-readable destination file", title: "Vulnerability summary", }, { category: "other", text: "In OpenShift Container Platform (OCP) the zstd package was delivered in OCP 4.3 which is already end of life.\n\nThis vulnerability can be considered low severity rather than moderate due to the fact that the elevated file permissions are only temporary and only exist during the compression or decompression process. Once the operation completes, the file permissions revert to their intended state, mirroring those of the input file. The risk is further minimized by the fact that the exposure window is brief, and the elevated permissions are not persistent. Additionally, the issue only arises during the processing of files, and only those with larger sizes or more involved operations would be at risk.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-24032", }, { category: "external", summary: "RHBZ#1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-24032", url: "https://www.cve.org/CVERecord?id=CVE-2021-24032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", }, ], release_date: "2021-02-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "zstd: Race condition allows attacker to access world-readable destination file", }, { cve: "CVE-2022-3171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2022-10-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2137645", }, ], notes: [ { category: "description", text: "A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted back-n-forth between mutable and immutable forms, resulting in potentially long garbage collection pauses. We recommend updating to the versions mentioned above.", title: "Vulnerability description", }, { category: "summary", text: "protobuf-java: timeout in parser leads to DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-3171", }, { category: "external", summary: "RHBZ#2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-3171", url: "https://www.cve.org/CVERecord?id=CVE-2022-3171", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", }, { category: "external", summary: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", url: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", }, ], release_date: "2022-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "protobuf-java: timeout in parser leads to DoS", }, { cve: "CVE-2022-4899", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-01-31T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2179864", }, ], notes: [ { category: "description", text: "A vulnerability was found in zstd. This flaw allows an attacker to supply an empty string as an argument to the command line tool to cause a buffer overrun.", title: "Vulnerability description", }, { category: "summary", text: "zstd: mysql: buffer overrun in util.c", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability is rated as Moderate because a buffer overrun in Zstd can be triggered by supplying an empty string as an argument to the command-line tool. On exploitation, it could lead to application crashes or unpredictable behavior.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-4899", }, { category: "external", summary: "RHBZ#2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-4899", url: "https://www.cve.org/CVERecord?id=CVE-2022-4899", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", }, ], release_date: "2022-07-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "zstd: mysql: buffer overrun in util.c", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-42920", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2022-11-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2142707", }, ], notes: [ { category: "description", text: "An out-of-bounds (OOB) write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected.", title: "Vulnerability description", }, { category: "summary", text: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", title: "Vulnerability summary", }, { category: "other", text: "Fuse 7 ships the code in question but does not utilize it in the product, so it is affected at a reduced impact of Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42920", }, { category: "external", summary: "RHBZ#2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42920", url: "https://www.cve.org/CVERecord?id=CVE-2022-42920", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", }, { category: "external", summary: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", url: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", }, ], release_date: "2022-11-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", }, { cve: "CVE-2023-1370", cwe: { id: "CWE-674", name: "Uncontrolled Recursion", }, discovery_date: "2023-04-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2188542", }, ], notes: [ { category: "description", text: "A flaw was found in the json-smart package. This security flaw occurs when reaching a ‘[‘ or ‘{‘ character in the JSON input, and the code parses an array or an object, respectively. The 3PP does not have any limit to the nesting of such arrays or objects. Since nested arrays and objects are parsed recursively, nesting too many of them can cause stack exhaustion (stack overflow) and crash the software.", title: "Vulnerability description", }, { category: "summary", text: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-1370", }, { category: "external", summary: "RHBZ#2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-1370", url: "https://www.cve.org/CVERecord?id=CVE-2023-1370", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", }, { category: "external", summary: "https://github.com/advisories/GHSA-493p-pfq6-5258", url: "https://github.com/advisories/GHSA-493p-pfq6-5258", }, { category: "external", summary: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", url: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", }, ], release_date: "2023-03-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", }, { cve: "CVE-2023-2976", cwe: { id: "CWE-552", name: "Files or Directories Accessible to External Parties", }, discovery_date: "2023-06-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215229", }, ], notes: [ { category: "description", text: "A flaw was found in Guava. The methodology for temporary directories and files can allow other local users or apps with accordant permissions to access the temp files, possibly leading to information exposure or tampering in the files created in the directory.", title: "Vulnerability description", }, { category: "summary", text: "guava: insecure temporary directory creation", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Single Sign-On 7 ships the affected component as a layered product of Red Hat JBoss Enterprise Application 7, and as such is affected by this flaw. However, Single Sign-On 7 does not use the affected code and is not vulnerable to exploit.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-2976", }, { category: "external", summary: "RHBZ#2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-2976", url: "https://www.cve.org/CVERecord?id=CVE-2023-2976", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Temp files should be created with sufficiently non-predictable names and in a secure-permissioned, dedicated temp folder.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "guava: insecure temporary directory creation", }, { cve: "CVE-2023-33201", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215465", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle 1.73. This issue targets the fix of LDAP wild cards. Before the fix there was no validation for the X.500 name of any certificate, subject, or issuer, so the presence of a wild card may lead to information disclosure. This could allow a malicious user to obtain unauthorized information via blind LDAP Injection, exploring the environment and enumerating data. The exploit depends on the structure of the target LDAP directory as well as what kind of errors are exposed to the user.", title: "Vulnerability description", }, { category: "summary", text: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33201", }, { category: "external", summary: "RHBZ#2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33201", url: "https://www.cve.org/CVERecord?id=CVE-2023-33201", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", }, ], release_date: "2023-06-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", }, { cve: "CVE-2023-33202", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-11-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2251281", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle for the Java pkix module, which is vulnerable to a potential Denial of Service (DoS) issue within the org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafted ASN.1 data through the PEMParser causes an OutOfMemoryError, which can enable a denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33202", }, { category: "external", summary: "RHBZ#2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33202", url: "https://www.cve.org/CVERecord?id=CVE-2023-33202", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", }, ], release_date: "2023-11-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", }, { cve: "CVE-2023-43642", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2023-09-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2241722", }, ], notes: [ { category: "description", text: "A flaw was found in SnappyInputStream in snappy-java, a data compression library in Java. This issue occurs when decompressing data with a too-large chunk size due to a missing upper bound check on chunk length. An unrecoverable fatal error can occur, resulting in a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-43642", }, { category: "external", summary: "RHBZ#2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-43642", url: "https://www.cve.org/CVERecord?id=CVE-2023-43642", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", }, { category: "external", summary: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", url: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", }, ], release_date: "2023-09-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", }, { cve: "CVE-2023-51074", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, discovery_date: "2023-12-28T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2256063", }, ], notes: [ { category: "description", text: "A stack overflow vulnerability was found in the Criteria.parse() method in json-path. This issue occurs due to an uncontrolled recursion caused by specially crafted input, leading to a stack overflow. This vulnerability has the potential to trigger a crash, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "json-path: stack-based buffer overflow in Criteria.parse method", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this at maximum of a Moderate impact. When interacting with a server to explore this possible vulnerability, the attacker would be the only one seeing a HTTP 500 error and no other user (or the server entirely) would be vulnerable in a real application scenario with multi-threads.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-51074", }, { category: "external", summary: "RHBZ#2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-51074", url: "https://www.cve.org/CVERecord?id=CVE-2023-51074", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", }, { category: "external", summary: "https://github.com/json-path/JsonPath/issues/973", url: "https://github.com/json-path/JsonPath/issues/973", }, ], release_date: "2023-12-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "json-path: stack-based buffer overflow in Criteria.parse method", }, { cve: "CVE-2024-1023", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-01-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2260840", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit results in a memory leak due to using Netty FastThreadLocal data structures. Specifically, when the Vert.x HTTP client establishes connections to different hosts, triggering the memory leak. The leak can be accelerated with intimate runtime knowledge, allowing an attacker to exploit this vulnerability. For instance, a server accepting arbitrary internet addresses could serve as an attack vector by connecting to these addresses, thereby accelerating the memory leak.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1023", }, { category: "external", summary: "RHBZ#2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1023", url: "https://www.cve.org/CVERecord?id=CVE-2024-1023", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/issues/5078", url: "https://github.com/eclipse-vertx/vert.x/issues/5078", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5080", url: "https://github.com/eclipse-vertx/vert.x/pull/5080", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5082", url: "https://github.com/eclipse-vertx/vert.x/pull/5082", }, ], release_date: "2024-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", }, { cve: "CVE-2024-1300", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2263139", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading to memory exhaustion. This flaw allows attackers to send TLS client hello messages with fake server names, triggering a JVM out-of-memory error.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", title: "Vulnerability summary", }, { category: "other", text: "This affects only TLS servers with SNI enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1300", }, { category: "external", summary: "RHBZ#2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1300", url: "https://www.cve.org/CVERecord?id=CVE-2024-1300", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", }, { category: "external", summary: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", url: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", }, ], release_date: "2024-02-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", }, { cve: "CVE-2024-2700", cwe: { id: "CWE-526", name: "Cleartext Storage of Sensitive Information in an Environment Variable", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2273281", }, ], notes: [ { category: "description", text: "A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been set by the developer or CI environment for testing purposes, such as dropping the database during application startup or trusting all TLS certificates to accept self-signed certificates. If these properties are configured using environment variables or the .env facility, they are captured into the built application, which can lead to dangerous behavior if the application does not override these values. This behavior only happens for configuration properties from the `quarkus.*` namespace. Application-specific properties are not captured.", title: "Vulnerability description", }, { category: "summary", text: "quarkus-core: Leak of local configuration properties into Quarkus applications", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this as a Moderate impact vulnerability since this requires an attacker to have direct access to the environment variables to override, and the application must use that environment variable to be jeopardized.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-2700", }, { category: "external", summary: "RHBZ#2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-2700", url: "https://www.cve.org/CVERecord?id=CVE-2024-2700", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", }, ], release_date: "2024-04-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Currently, no mitigation is available for this vulnerability. Please update as the patches become available.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus-core: Leak of local configuration properties into Quarkus applications", }, { cve: "CVE-2024-25710", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2024-02-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2264988", }, ], notes: [ { category: "description", text: "A loop with an unreachable exit condition (Infinite Loop) vulnerability was found in Apache Common Compress. This issue can lead to a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-25710", }, { category: "external", summary: "RHBZ#2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-25710", url: "https://www.cve.org/CVERecord?id=CVE-2024-25710", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2024/02/19/1", url: "http://www.openwall.com/lists/oss-security/2024/02/19/1", }, { category: "external", summary: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", url: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", }, ], release_date: "2024-02-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "No mitigation is currently available for this vulnerability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", }, { cve: "CVE-2024-29025", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2272907", }, ], notes: [ { category: "description", text: "A flaw was found in the io.netty:netty-codec-http package. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling issues due to the accumulation of data in the HttpPostRequestDecoder. The decoder cumulates bytes in the undecodedChunk buffer until it can decode a field, allowing data to accumulate without limits. This flaw allows an attacker to cause a denial of service by sending a chunked post consisting of many small fields that will be accumulated in the bodyListHttpData list.", title: "Vulnerability description", }, { category: "summary", text: "netty-codec-http: Allocation of Resources Without Limits or Throttling", title: "Vulnerability summary", }, { category: "other", text: "The vulnerability in io.netty:netty-codec-http, allowing for Allocation of Resources Without Limits or Throttling issues, is assessed as moderate severity due to its potential impact on system availability and performance. By exploiting the flaw in HttpPostRequestDecoder, an attacker can craft chunked POST requests with numerous small fields, causing excessive accumulation of data in memory buffers. This unrestricted accumulation can lead to significant memory consumption on the server, potentially exhausting available resources and resulting in denial of service (DoS) conditions.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-29025", }, { category: "external", summary: "RHBZ#2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-29025", url: "https://www.cve.org/CVERecord?id=CVE-2024-29025", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", }, { category: "external", summary: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", url: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", }, { category: "external", summary: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", url: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", }, { category: "external", summary: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", url: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", }, { category: "external", summary: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", url: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", }, ], release_date: "2024-03-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "netty-codec-http: Allocation of Resources Without Limits or Throttling", }, ], }
rhsa-2024:3527
Vulnerability from csaf_redhat
Published
2024-05-30 20:24
Modified
2025-03-15 04:02
Summary
Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update
Notes
Topic
Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency.
This release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.
Security Fix(es):
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)
* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)
* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)
* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)
* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)
* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)
* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)
* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)
* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)
* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)
* guava: insecure temporary directory creation (CVE-2023-2976)
* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)
* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)
* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat AMQ Streams 2.7.0 is now available from the Red Hat Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. \n\nThis release of Red Hat AMQ Streams 2.7.0 serves as a replacement for Red Hat AMQ Streams 2.6.0, and includes security and bug fixes, and enhancements.\n\nSecurity Fix(es):\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n* zstd: Race condition allows attacker to access world-readable destination file (CVE-2021-24032)\n* RocksDB: zstd: mysql: buffer overrun in util.c (CVE-2022-4899)\n* netty-codec-http: Allocation of Resources Without Limits or Throttling (CVE-2024-29025)\n* commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file (CVE-2024-25710)\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n* snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact (CVE-2023-43642)\n* json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370)\n* protobuf-java: timeout in parser leads to DoS (CVE-2022-3171)\n* Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing (CVE-2022-42920)\n* bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class (CVE-2023-33202)\n* bouncycastle: potential blind LDAP injection attack using a self-signed certificate (CVE-2023-33201)\n* json-path: stack-based buffer overflow in Criteria.parse method (CVE-2023-51074)\n* guava: insecure temporary directory creation (CVE-2023-2976)\n* io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support (CVE-2024-1300)\n* io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx (CVE-2024-1023)\n* quarkus-core: Leak of local configuration properties into Quarkus applications (CVE-2024-2700)", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:3527", url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "ENTMQST-5619", url: "https://issues.redhat.com/browse/ENTMQST-5619", }, { category: "external", summary: "ENTMQST-5881", url: "https://issues.redhat.com/browse/ENTMQST-5881", }, { category: "external", summary: "ENTMQST-5882", url: "https://issues.redhat.com/browse/ENTMQST-5882", }, { category: "external", summary: "ENTMQST-5883", url: "https://issues.redhat.com/browse/ENTMQST-5883", }, { category: "external", summary: "ENTMQST-5884", url: "https://issues.redhat.com/browse/ENTMQST-5884", }, { category: "external", summary: "ENTMQST-5885", url: "https://issues.redhat.com/browse/ENTMQST-5885", }, { category: "external", summary: "ENTMQST-5886", url: "https://issues.redhat.com/browse/ENTMQST-5886", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_3527.json", }, ], title: "Red Hat Security Advisory: Red Hat AMQ Streams 2.7.0 release and security update", tracking: { current_release_date: "2025-03-15T04:02:14+00:00", generator: { date: "2025-03-15T04:02:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2024:3527", initial_release_date: "2024-05-30T20:24:46+00:00", revision_history: [ { date: "2024-05-30T20:24:46+00:00", number: "1", summary: "Initial version", }, { date: "2024-06-25T17:26:45+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-15T04:02:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat AMQ Streams 2.7.0", product: { name: "Red Hat AMQ Streams 2.7.0", product_id: "Red Hat AMQ Streams 2.7.0", product_identification_helper: { cpe: "cpe:/a:redhat:amq_streams:2", }, }, }, ], category: "product_family", name: "Streams for Apache Kafka", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-24032", cwe: { id: "CWE-281", name: "Improper Preservation of Permissions", }, discovery_date: "2021-02-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1928090", }, ], notes: [ { category: "description", text: "A flaw was found in zstd. While the final file mode is reflective of the input file, when compressing or uncompressing, the file can temporarily gain greater permissions than the input and potentially leading to security issues (especially if large files are being handled).", title: "Vulnerability description", }, { category: "summary", text: "zstd: Race condition allows attacker to access world-readable destination file", title: "Vulnerability summary", }, { category: "other", text: "In OpenShift Container Platform (OCP) the zstd package was delivered in OCP 4.3 which is already end of life.\n\nThis vulnerability can be considered low severity rather than moderate due to the fact that the elevated file permissions are only temporary and only exist during the compression or decompression process. Once the operation completes, the file permissions revert to their intended state, mirroring those of the input file. The risk is further minimized by the fact that the exposure window is brief, and the elevated permissions are not persistent. Additionally, the issue only arises during the processing of files, and only those with larger sizes or more involved operations would be at risk.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-24032", }, { category: "external", summary: "RHBZ#1928090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1928090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-24032", url: "https://www.cve.org/CVERecord?id=CVE-2021-24032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", }, ], release_date: "2021-02-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "zstd: Race condition allows attacker to access world-readable destination file", }, { cve: "CVE-2022-3171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2022-10-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2137645", }, ], notes: [ { category: "description", text: "A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted back-n-forth between mutable and immutable forms, resulting in potentially long garbage collection pauses. We recommend updating to the versions mentioned above.", title: "Vulnerability description", }, { category: "summary", text: "protobuf-java: timeout in parser leads to DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-3171", }, { category: "external", summary: "RHBZ#2137645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2137645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-3171", url: "https://www.cve.org/CVERecord?id=CVE-2022-3171", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-3171", }, { category: "external", summary: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", url: "https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2", }, ], release_date: "2022-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "protobuf-java: timeout in parser leads to DoS", }, { cve: "CVE-2022-4899", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-01-31T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2179864", }, ], notes: [ { category: "description", text: "A vulnerability was found in zstd. This flaw allows an attacker to supply an empty string as an argument to the command line tool to cause a buffer overrun.", title: "Vulnerability description", }, { category: "summary", text: "zstd: mysql: buffer overrun in util.c", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability is rated as Moderate because a buffer overrun in Zstd can be triggered by supplying an empty string as an argument to the command-line tool. On exploitation, it could lead to application crashes or unpredictable behavior.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-4899", }, { category: "external", summary: "RHBZ#2179864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2179864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-4899", url: "https://www.cve.org/CVERecord?id=CVE-2022-4899", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-4899", }, ], release_date: "2022-07-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "zstd: mysql: buffer overrun in util.c", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-42920", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2022-11-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2142707", }, ], notes: [ { category: "description", text: "An out-of-bounds (OOB) write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected.", title: "Vulnerability description", }, { category: "summary", text: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", title: "Vulnerability summary", }, { category: "other", text: "Fuse 7 ships the code in question but does not utilize it in the product, so it is affected at a reduced impact of Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42920", }, { category: "external", summary: "RHBZ#2142707", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2142707", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42920", url: "https://www.cve.org/CVERecord?id=CVE-2022-42920", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42920", }, { category: "external", summary: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", url: "https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4", }, ], release_date: "2022-11-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing", }, { cve: "CVE-2023-1370", cwe: { id: "CWE-674", name: "Uncontrolled Recursion", }, discovery_date: "2023-04-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2188542", }, ], notes: [ { category: "description", text: "A flaw was found in the json-smart package. This security flaw occurs when reaching a ‘[‘ or ‘{‘ character in the JSON input, and the code parses an array or an object, respectively. The 3PP does not have any limit to the nesting of such arrays or objects. Since nested arrays and objects are parsed recursively, nesting too many of them can cause stack exhaustion (stack overflow) and crash the software.", title: "Vulnerability description", }, { category: "summary", text: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-1370", }, { category: "external", summary: "RHBZ#2188542", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2188542", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-1370", url: "https://www.cve.org/CVERecord?id=CVE-2023-1370", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-1370", }, { category: "external", summary: "https://github.com/advisories/GHSA-493p-pfq6-5258", url: "https://github.com/advisories/GHSA-493p-pfq6-5258", }, { category: "external", summary: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", url: "https://research.jfrog.com/vulnerabilities/stack-exhaustion-in-json-smart-leads-to-denial-of-service-when-parsing-malformed-json-xray-427633/", }, ], release_date: "2023-03-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)", }, { cve: "CVE-2023-2976", cwe: { id: "CWE-552", name: "Files or Directories Accessible to External Parties", }, discovery_date: "2023-06-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215229", }, ], notes: [ { category: "description", text: "A flaw was found in Guava. The methodology for temporary directories and files can allow other local users or apps with accordant permissions to access the temp files, possibly leading to information exposure or tampering in the files created in the directory.", title: "Vulnerability description", }, { category: "summary", text: "guava: insecure temporary directory creation", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Single Sign-On 7 ships the affected component as a layered product of Red Hat JBoss Enterprise Application 7, and as such is affected by this flaw. However, Single Sign-On 7 does not use the affected code and is not vulnerable to exploit.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-2976", }, { category: "external", summary: "RHBZ#2215229", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215229", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-2976", url: "https://www.cve.org/CVERecord?id=CVE-2023-2976", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-2976", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Temp files should be created with sufficiently non-predictable names and in a secure-permissioned, dedicated temp folder.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "guava: insecure temporary directory creation", }, { cve: "CVE-2023-33201", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2215465", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle 1.73. This issue targets the fix of LDAP wild cards. Before the fix there was no validation for the X.500 name of any certificate, subject, or issuer, so the presence of a wild card may lead to information disclosure. This could allow a malicious user to obtain unauthorized information via blind LDAP Injection, exploring the environment and enumerating data. The exploit depends on the structure of the target LDAP directory as well as what kind of errors are exposed to the user.", title: "Vulnerability description", }, { category: "summary", text: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33201", }, { category: "external", summary: "RHBZ#2215465", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2215465", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33201", url: "https://www.cve.org/CVERecord?id=CVE-2023-33201", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33201", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33201", }, ], release_date: "2023-06-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bouncycastle: potential blind LDAP injection attack using a self-signed certificate", }, { cve: "CVE-2023-33202", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-11-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2251281", }, ], notes: [ { category: "description", text: "A flaw was found in Bouncy Castle for the Java pkix module, which is vulnerable to a potential Denial of Service (DoS) issue within the org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafted ASN.1 data through the PEMParser causes an OutOfMemoryError, which can enable a denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33202", }, { category: "external", summary: "RHBZ#2251281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2251281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33202", url: "https://www.cve.org/CVERecord?id=CVE-2023-33202", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33202", }, { category: "external", summary: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", url: "https://github.com/bcgit/bc-java/wiki/CVE-2023-33202", }, ], release_date: "2023-11-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class", }, { cve: "CVE-2023-43642", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2023-09-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2241722", }, ], notes: [ { category: "description", text: "A flaw was found in SnappyInputStream in snappy-java, a data compression library in Java. This issue occurs when decompressing data with a too-large chunk size due to a missing upper bound check on chunk length. An unrecoverable fatal error can occur, resulting in a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-43642", }, { category: "external", summary: "RHBZ#2241722", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2241722", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-43642", url: "https://www.cve.org/CVERecord?id=CVE-2023-43642", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-43642", }, { category: "external", summary: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", url: "https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv", }, ], release_date: "2023-09-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact", }, { cve: "CVE-2023-51074", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, discovery_date: "2023-12-28T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2256063", }, ], notes: [ { category: "description", text: "A stack overflow vulnerability was found in the Criteria.parse() method in json-path. This issue occurs due to an uncontrolled recursion caused by specially crafted input, leading to a stack overflow. This vulnerability has the potential to trigger a crash, resulting in a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "json-path: stack-based buffer overflow in Criteria.parse method", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this at maximum of a Moderate impact. When interacting with a server to explore this possible vulnerability, the attacker would be the only one seeing a HTTP 500 error and no other user (or the server entirely) would be vulnerable in a real application scenario with multi-threads.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-51074", }, { category: "external", summary: "RHBZ#2256063", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2256063", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-51074", url: "https://www.cve.org/CVERecord?id=CVE-2023-51074", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-51074", }, { category: "external", summary: "https://github.com/json-path/JsonPath/issues/973", url: "https://github.com/json-path/JsonPath/issues/973", }, ], release_date: "2023-12-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "json-path: stack-based buffer overflow in Criteria.parse method", }, { cve: "CVE-2024-1023", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-01-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2260840", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit results in a memory leak due to using Netty FastThreadLocal data structures. Specifically, when the Vert.x HTTP client establishes connections to different hosts, triggering the memory leak. The leak can be accelerated with intimate runtime knowledge, allowing an attacker to exploit this vulnerability. For instance, a server accepting arbitrary internet addresses could serve as an attack vector by connecting to these addresses, thereby accelerating the memory leak.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1023", }, { category: "external", summary: "RHBZ#2260840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2260840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1023", url: "https://www.cve.org/CVERecord?id=CVE-2024-1023", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1023", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/issues/5078", url: "https://github.com/eclipse-vertx/vert.x/issues/5078", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5080", url: "https://github.com/eclipse-vertx/vert.x/pull/5080", }, { category: "external", summary: "https://github.com/eclipse-vertx/vert.x/pull/5082", url: "https://github.com/eclipse-vertx/vert.x/pull/5082", }, ], release_date: "2024-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx/vertx-core: memory leak due to the use of Netty FastThreadLocal data structures in Vertx", }, { cve: "CVE-2024-1300", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2263139", }, ], notes: [ { category: "description", text: "A vulnerability in the Eclipse Vert.x toolkit causes a memory leak in TCP servers configured with TLS and SNI support. When processing an unknown SNI server name assigned the default certificate instead of a mapped certificate, the SSL context is erroneously cached in the server name map, leading to memory exhaustion. This flaw allows attackers to send TLS client hello messages with fake server names, triggering a JVM out-of-memory error.", title: "Vulnerability description", }, { category: "summary", text: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", title: "Vulnerability summary", }, { category: "other", text: "This affects only TLS servers with SNI enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1300", }, { category: "external", summary: "RHBZ#2263139", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2263139", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1300", url: "https://www.cve.org/CVERecord?id=CVE-2024-1300", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1300", }, { category: "external", summary: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", url: "https://vertx.io/docs/vertx-core/java/#_server_name_indication_sni.", }, ], release_date: "2024-02-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "io.vertx:vertx-core: memory leak when a TCP server is configured with TLS and SNI support", }, { cve: "CVE-2024-2700", cwe: { id: "CWE-526", name: "Cleartext Storage of Sensitive Information in an Environment Variable", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2273281", }, ], notes: [ { category: "description", text: "A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been set by the developer or CI environment for testing purposes, such as dropping the database during application startup or trusting all TLS certificates to accept self-signed certificates. If these properties are configured using environment variables or the .env facility, they are captured into the built application, which can lead to dangerous behavior if the application does not override these values. This behavior only happens for configuration properties from the `quarkus.*` namespace. Application-specific properties are not captured.", title: "Vulnerability description", }, { category: "summary", text: "quarkus-core: Leak of local configuration properties into Quarkus applications", title: "Vulnerability summary", }, { category: "other", text: "Red Hat rates this as a Moderate impact vulnerability since this requires an attacker to have direct access to the environment variables to override, and the application must use that environment variable to be jeopardized.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-2700", }, { category: "external", summary: "RHBZ#2273281", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2273281", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-2700", url: "https://www.cve.org/CVERecord?id=CVE-2024-2700", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-2700", }, ], release_date: "2024-04-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Currently, no mitigation is available for this vulnerability. Please update as the patches become available.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus-core: Leak of local configuration properties into Quarkus applications", }, { cve: "CVE-2024-25710", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2024-02-19T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2264988", }, ], notes: [ { category: "description", text: "A loop with an unreachable exit condition (Infinite Loop) vulnerability was found in Apache Common Compress. This issue can lead to a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-25710", }, { category: "external", summary: "RHBZ#2264988", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2264988", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-25710", url: "https://www.cve.org/CVERecord?id=CVE-2024-25710", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-25710", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2024/02/19/1", url: "http://www.openwall.com/lists/oss-security/2024/02/19/1", }, { category: "external", summary: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", url: "https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf", }, ], release_date: "2024-02-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "No mitigation is currently available for this vulnerability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file", }, { cve: "CVE-2024-29025", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2024-04-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2272907", }, ], notes: [ { category: "description", text: "A flaw was found in the io.netty:netty-codec-http package. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling issues due to the accumulation of data in the HttpPostRequestDecoder. The decoder cumulates bytes in the undecodedChunk buffer until it can decode a field, allowing data to accumulate without limits. This flaw allows an attacker to cause a denial of service by sending a chunked post consisting of many small fields that will be accumulated in the bodyListHttpData list.", title: "Vulnerability description", }, { category: "summary", text: "netty-codec-http: Allocation of Resources Without Limits or Throttling", title: "Vulnerability summary", }, { category: "other", text: "The vulnerability in io.netty:netty-codec-http, allowing for Allocation of Resources Without Limits or Throttling issues, is assessed as moderate severity due to its potential impact on system availability and performance. By exploiting the flaw in HttpPostRequestDecoder, an attacker can craft chunked POST requests with numerous small fields, causing excessive accumulation of data in memory buffers. This unrestricted accumulation can lead to significant memory consumption on the server, potentially exhausting available resources and resulting in denial of service (DoS) conditions.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat AMQ Streams 2.7.0", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-29025", }, { category: "external", summary: "RHBZ#2272907", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2272907", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-29025", url: "https://www.cve.org/CVERecord?id=CVE-2024-29025", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-29025", }, { category: "external", summary: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", url: "https://gist.github.com/vietj/f558b8ea81ec6505f1e9a6ca283c9ae3", }, { category: "external", summary: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", url: "https://github.com/netty/netty/commit/0d0c6ed782d13d423586ad0c71737b2c7d02058c", }, { category: "external", summary: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", url: "https://github.com/netty/netty/security/advisories/GHSA-5jpm-x58v-624v", }, { category: "external", summary: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", url: "https://security.snyk.io/vuln/SNYK-JAVA-IONETTY-6483812", }, ], release_date: "2024-03-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-05-30T20:24:46+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:3527", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "Red Hat AMQ Streams 2.7.0", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "Red Hat AMQ Streams 2.7.0", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "netty-codec-http: Allocation of Resources Without Limits or Throttling", }, ], }
gsd-2021-24032
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.
Aliases
Aliases
{ GSD: { alias: "CVE-2021-24032", description: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", id: "GSD-2021-24032", references: [ "https://www.suse.com/security/cve/CVE-2021-24032.html", "https://ubuntu.com/security/CVE-2021-24032", "https://advisories.mageia.org/CVE-2021-24032.html", "https://security.archlinux.org/CVE-2021-24032", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2021-24032", ], details: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", id: "GSD-2021-24032", modified: "2023-12-13T01:23:37.345911Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve-assign@fb.com", DATE_ASSIGNED: "2021-03-01", ID: "CVE-2021-24032", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Zstandard", version: { version_data: [ { version_affected: "!>=", version_value: "1.4.9", }, { version_affected: ">=", version_value: "1.4.1", }, { version_affected: "!<", version_value: "1.4.1", }, ], }, }, ], }, vendor_name: "Facebook", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Insecure Inherited Permissions (CWE-277)", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/facebook/zstd/issues/2491", refsource: "MISC", url: "https://github.com/facebook/zstd/issues/2491", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", refsource: "MISC", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { name: "https://www.facebook.com/security/advisories/cve-2021-24032", refsource: "MISC", url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:facebook:zstandard:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "1.4.9", versionStartIncluding: "1.4.1", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve-assign@fb.com", ID: "CVE-2021-24032", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-276", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/facebook/zstd/issues/2491", refsource: "MISC", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/facebook/zstd/issues/2491", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", refsource: "MISC", tags: [ "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { name: "https://www.facebook.com/security/advisories/cve-2021-24032", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 1.9, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1, impactScore: 3.6, }, }, lastModifiedDate: "2021-04-28T20:04Z", publishedDate: "2021-03-04T21:15Z", }, }, }
fkie_cve-2021-24032
Vulnerability from fkie_nvd
Published
2021-03-04 21:15
Modified
2024-11-21 05:52
Severity ?
Summary
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| cve-assign@fb.com | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519 | Patch, Third Party Advisory | |
| cve-assign@fb.com | https://github.com/facebook/zstd/issues/2491 | Issue Tracking, Patch, Third Party Advisory | |
| cve-assign@fb.com | https://www.facebook.com/security/advisories/cve-2021-24032 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/facebook/zstd/issues/2491 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.facebook.com/security/advisories/cve-2021-24032 | Third Party Advisory |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:facebook:zstandard:*:*:*:*:*:*:*:*", matchCriteriaId: "D09560DA-1F1B-41AA-B96F-DABEE82C04D0", versionEndExcluding: "1.4.9", versionStartIncluding: "1.4.1", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", }, { lang: "es", value: "A partir de la versión v1.4.1 y anterior a la v1.4.9, debido a una solución incompleta para el CVE-2021-24031, la utilidad de línea de comandos Zstandard creó archivos de salida con permisos predeterminados y restringió esos permisos inmediatamente después. Por lo tanto, los archivos de salida podrían ser momentáneamente legibles o escribibles para personas no deseadas", }, ], id: "CVE-2021-24032", lastModified: "2024-11-21T05:52:14.943", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 1.9, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-03-04T21:15:12.963", references: [ { source: "cve-assign@fb.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { source: "cve-assign@fb.com", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/facebook/zstd/issues/2491", }, { source: "cve-assign@fb.com", tags: [ "Third Party Advisory", ], url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/facebook/zstd/issues/2491", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], sourceIdentifier: "cve-assign@fb.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-277", }, ], source: "cve-assign@fb.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-276", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
ghsa-ffqj-7pgc-cmj5
Vulnerability from github
Published
2022-05-24 17:43
Modified
2022-05-24 17:43
Details
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.
{ affected: [], aliases: [ "CVE-2021-24032", ], database_specific: { cwe_ids: [ "CWE-276", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2021-03-04T21:15:00Z", severity: "CRITICAL", }, details: "Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.", id: "GHSA-ffqj-7pgc-cmj5", modified: "2022-05-24T17:43:40Z", published: "2022-05-24T17:43:40Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-24032", }, { type: "WEB", url: "https://github.com/facebook/zstd/issues/2491", }, { type: "WEB", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982519", }, { type: "WEB", url: "https://www.facebook.com/security/advisories/cve-2021-24032", }, ], schema_version: "1.4.0", severity: [], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.