Описание
Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.
A flaw was found in Helm v3. In affected versions of Helm, a specially crafted JSON Schema within a chart can lead to a stack overflow. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow.
Отчет
Within regulated environments, a combination of the following controls acts as a significant barrier to successful exploitation of a CWE-121: Stack-based Buffer Overflow or Throttling or CWE-674: Uncontrolled Recursion vulnerability, and therefore, downgrades the severity of this particular CVE from Moderate to Low. Access is granted only after successful hard token-based multi-factor authentication (MFA) and is governed by least privilege, ensuring only authorized roles can execute or modify code. Red Hat enforces least functionality by enabling only essential features, services, and ports, reducing exposure to memory and recursion-based risks. Static code analysis and peer reviews ensure input handling routines validate user input and enforce recursion limits, preventing stack overflows and excessive recursive calls. Memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) enhance resistance to buffer overflows and denial of service attacks. Additionally, runtime monitoring, malicious code protection, and process isolation detect anomalous behavior and contain the impact of exploitation to individual processes.
Меры по смягчению последствий
To mitigate this vulnerability, ensure that the JSON Schema within any charts loaded by Helm does not have a large number of nested references. These JSON Schema files are larger than 10 MiB.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| cert-manager Operator for Red Hat OpenShift | cert-manager/jetstack-cert-manager-acmesolver-rhel9 | Fix deferred | ||
| cert-manager Operator for Red Hat OpenShift | cert-manager/jetstack-cert-manager-rhel9 | Fix deferred | ||
| Deployment Validation Operator | deployment-validation-operator-container | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/addon-manager-rhel9 | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/backplane-rhel9-operator | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/cluster-proxy-rhel9 | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/hypershift-addon-rhel9-operator | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/managed-serviceaccount-rhel8 | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/multicloud-manager-rhel8 | Fix deferred | ||
| Multicluster Engine for Kubernetes | multicluster-engine/placement-rhel8 | Fix deferred |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.
Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.
Helm is a package manager for Charts for Kubernetes. A JSON Schema fil ...
Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow
EPSS
6.5 Medium
CVSS3