Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

fstec логотип

BDU:2024-10806

Опубликовано: 19 нояб. 2024
Источник: fstec
CVSS3: 6.5
CVSS2: 6.1
EPSS Низкий

Описание

Уязвимость реализации протокола QUIC библиотеки quic-go языка программирования go связана с недостаточной проверкой подлинности данных. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, оказать влияние на доступность защищаемой информации

Вендор

Red Hat Inc.
АО «ИВК»
Сообщество свободного программного обеспечения

Наименование ПО

Openshift Service Mesh
Red Hat Advanced Cluster Management for Kubernetes
Red Hat OpenShift Container Platform
Red Hat Ansible Automation Platform
Red Hat OpenShift Dev Spaces
АЛЬТ СП 10
Quic-Go

Версия ПО

2 (Openshift Service Mesh)
2 (Red Hat Advanced Cluster Management for Kubernetes)
4 (Red Hat OpenShift Container Platform)
2 (Red Hat Ansible Automation Platform)
- (Red Hat OpenShift Dev Spaces)
- (АЛЬТ СП 10)
до 0.48.2 (Quic-Go)

Тип ПО

Прикладное ПО информационных систем
Сетевое средство
Сетевое программное средство
Операционная система

Операционные системы и аппаратные платформы

АО «ИВК» АЛЬТ СП 10 -

Уровень опасности уязвимости

Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,1)
Средний уровень опасности (базовая оценка CVSS 3.0 составляет 6,5)

Возможные меры по устранению уязвимости

Использование рекомендаций:
https://github.com/quic-go/quic-go/commit/ca31dd355cbe5fc6c5807992d9d1149c66c96a50
https://github.com/quic-go/quic-go/pull/4729
https://github.com/quic-go/quic-go/releases/tag/v0.48.2
https://github.com/quic-go/quic-go/security/advisories/GHSA-px8v-pp82-rcvr
Для программных продуктов Red Hat Inc.:
https://access.redhat.com/security/cve/cve-2024-53259
Для ОС АЛЬТ СП 10: установка обновления из публичного репозитория программного средства: https://altsp.su/obnovleniya-bezopasnosti/

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 78%
0.01252
Низкий

6.5 Medium

CVSS3

6.1 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2024-53259

CVSS3: 6.5
ubuntu
12 месяцев назад

quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IP_PMTUDISC_DO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceeds the MTU claimed in that ICMP packet. By setting this value to smaller than 1200 bytes (the minimum MTU for QUIC), the attacker can disrupt a QUIC connection. Crucially, this can be done after completion of the handshake, thereby circumventing any TCP fallback that might be implemented on the application layer (for example, many browsers fall back to HTTP over TCP if they're unable to establish a QUIC connection). The attacker needs to at least know the client's IP and port tuple to mount an attack. This vulnerability is fixed in 0.48.2.

redhat логотип

CVE-2024-53259

CVSS3: 6.5
redhat
12 месяцев назад

quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IP_PMTUDISC_DO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceeds the MTU claimed in that ICMP packet. By setting this value to smaller than 1200 bytes (the minimum MTU for QUIC), the attacker can disrupt a QUIC connection. Crucially, this can be done after completion of the handshake, thereby circumventing any TCP fallback that might be implemented on the application layer (for example, many browsers fall back to HTTP over TCP if they're unable to establish a QUIC connection). The attacker needs to at least know the client's IP and port tuple to mount an attack. This vulnerability is fixed in 0.48.2.

nvd логотип

CVE-2024-53259

CVSS3: 6.5
nvd
12 месяцев назад

quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IP_PMTUDISC_DO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceeds the MTU claimed in that ICMP packet. By setting this value to smaller than 1200 bytes (the minimum MTU for QUIC), the attacker can disrupt a QUIC connection. Crucially, this can be done after completion of the handshake, thereby circumventing any TCP fallback that might be implemented on the application layer (for example, many browsers fall back to HTTP over TCP if they're unable to establish a QUIC connection). The attacker needs to at least know the client's IP and port tuple to mount an attack. This vulnerability is fixed in 0.48.2.

msrc логотип

CVE-2024-53259

CVSS3: 6.5
msrc
8 месяцев назад

Описание отсутствует

debian логотип

CVE-2024-53259

CVSS3: 6.5
debian
12 месяцев назад

quic-go is an implementation of the QUIC protocol in Go. An off-path a ...

EPSS

Процентиль: 78%
0.01252
Низкий

6.5 Medium

CVSS3

6.1 Medium

CVSS2