Описание
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach is a simple as nc -rv localhost 22 < /dev/zero. A patch is available in version 22.2.0. There are currently no known workarounds.
An uncontrolled resource consumption flaw was found in python-twisted in the dataReceived() function. This flaw allows an unauthenticated, remote attacker to send a simple command to use all available memory and crash the server.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ansible Automation Platform 2 | automation-controller | Affected | ||
| Red Hat Enterprise Linux 6 | python-twisted | Out of support scope | ||
| Red Hat Enterprise Linux 6 | python-twisted-conch | Out of support scope | ||
| Red Hat OpenStack Platform 13 (Queens) | python-twisted | Affected | ||
| Red Hat Satellite 6 | python-twisted | Affected | ||
| Service Telemetry Framework 1.3 for RHEL 8 | python-twisted | Affected | ||
| Red Hat OpenStack Platform 16.1 | python-twisted | Fixed | RHSA-2022:0982 | 24.03.2022 |
| Red Hat OpenStack Platform 16.2 | python-twisted | Fixed | RHSA-2022:0992 | 23.03.2022 |
Показывать по
Дополнительная информация
Статус:
7.5 High
CVSS3
Связанные уязвимости
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach is a simple as `nc -rv localhost 22 < /dev/zero`. A patch is available in version 22.2.0. There are currently no known workarounds.
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the available memory. The attach is a simple as `nc -rv localhost 22 < /dev/zero`. A patch is available in version 22.2.0. There are currently no known workarounds.
Twisted is an event-based framework for internet applications, support ...
7.5 High
CVSS3