CVE-2022-39304

Опубликовано: 21 июл. 2022

Источник: redhat

CVSS3: 5

Описание

ghinstallation provides transport, which implements http.RoundTripper to provide authentication as an installation for GitHub Apps. In ghinstallation version 1, when the request to refresh an installation token failed, the HTTP request and response would be returned for debugging. The request contained the bearer JWT for the App, and was returned back to clients. This token is short lived (10 minute maximum). This issue has been patched and is available in version 2.0.0.

A flaw was found in ghinstallation. When a request to refresh an installation token fails, the HTTP request and response are returned for debugging. The returned request contains the short-lived (10-min maximum) bearer JWT for the app and is returned back to clients.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/multicluster-operators-subscription-rhel8	Not affected
Red Hat Advanced Cluster Security 3	advanced-cluster-security/rhacs-main-rhel8	Not affected
Red Hat Advanced Cluster Security 3	advanced-cluster-security/rhacs-scanner-rhel8	Not affected
Red Hat OpenShift GitOps	openshift-gitops-1/applicationset-rhel8	Affected
Red Hat OpenShift GitOps	openshift-gitops-1/argocd-rhel8	Affected
Red Hat OpenShift GitOps	openshift-gitops-1/gitops-rhel8	Not affected
Red Hat OpenShift GitOps	openshift-gitops-1/gitops-rhel8-operator	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-402

https://bugzilla.redhat.com/show_bug.cgi?id=2155942ghinstallation: Leak of bearer JWT from http.RoundTripper response

5 Medium

CVSS3

Связанные уязвимости

CVE-2022-39304

CVSS3: 5

nvd

около 3 лет назад

GHSA-h4q8-96p6-jcgr

CVSS3: 5

github

около 3 лет назад

ghinstallation returns app JWT in error responses

5 Medium

CVSS3